Re: Too many authentication failures

On Mon, 21 Jan 2008 16:48:38 GMT Darren Dunham <ddunham@xxxxxxxx> wrote:
| phil-news-nospam@xxxxxxxx wrote:
|> On Fri, 18 Jan 2008 23:24:44 GMT Darren Dunham <ddunham@xxxxxxxx> wrote:
|
|> | So I would assume setting PreferredAuthentications to
|> | 'keyboard-interactive,password' for that host will not attempt to send
|> | keybased identities.
|>
|> Don't assume that.
|
| Hmm? Why not?

What I am saying is I didn't try it because I didn't see it.

|
|> I never saw that feature. I can see it now since I know what name to
|> look for from your post. It certainly wasn't the logic I was looking
|> for.
|
| I doubt it's widely used.

It just didn't exactly fit what I was thinking of when I saw the problem
with the identities. What my thinking was is that when I specify them,
it should _replace_ the entire list with the list I give. If I give a
list (even of one) under a section for just a host, it should not use any
of those in the common section. Likewise if I specify one or more -i
options on the command line, it should not use any from the config file.
That was my focus in looking for a solution. Obviously it was an overly
narrow focus. I'd still prefer to have this kind of thing to keep the
identities list under control.

--
|---------------------------------------/----------------------------------|
| Phil Howard KA9WGN (ka9wgn.ham.org) / Do not send to the address below |
| first name lower case at ipal.net / spamtrap-2008-01-21-2313@xxxxxxxx |
|------------------------------------/-------------------------------------|
.

Relevant Pages

  • Re: Too many authentication failures
    ... |>| 'keyboard-interactive,password' for that host will not attempt to send ... What I wanted was fewer identities for certain hosts so that a password ... this particular string ie encountered in the list of identities, ...
    (comp.security.ssh)
  • Re: Too many authentication failures
    ... |>| 'keyboard-interactive,password' for that host will not attempt to send ... since it would turn password off entirely. ... What I wanted was fewer identities for certain hosts so that a password ... Good judgement comes with experience. ...
    (comp.security.ssh)
  • Re: Too many authentication failures
    ... PH> for that host will not attempt to send |>|>| keybased identities. ... PH> of password | authentication. ... This means that, *during publickey authentication*, it will only use ...
    (comp.security.ssh)
  • Re: Too many authentication failures
    ... |> That wouldn't achieve my goal, since it would turn password off entirely. ... |> What I wanted was fewer identities for certain hosts so that a password ...
    (comp.security.ssh)
  • Re: out of order identity field - sql2000
    ... the identities are calculated in the right order just not ... inserted but the insert order shouldn't matter if the identities are ... I noticed the blogger states "*most* of the rules are valid for SQL 2000 ... though he doesn't specify which ones. ...
    (comp.databases.ms-sqlserver)