On Wed, Jul 10, 2002 at 15:02:43 +0200, Dag-Erling Smorgrav wrote:
But why disable keyboard-interactive authentication?
There is nowhere documented that keyboard-interactive auth is required for
PasswordAuthentication. It works without it for ages. Sysadmins tends to
remove all unneded auth schemes to minimize compromise risk and left only
few or even one auth scheme.
Really, Andrey, I get the feeling that you've shot yourself in the
foot and are asking me why it hurts.
To shot yourself an additional action needed. But without any additional
action I have untouched config files which works for ages and stop working
now due to additional undocumented keyboard-interactive auth requirement
or commenting out pam_opie* requirement. I think I am not only one with
this setup type. Expect mass complaints when this goes to -stable,
especially because of hidden nature of this bug.