Full Disclosure mailing list archives

Re: SSHD - PasswordAuthentication no/yes

From: "Andrew A" <gluttony () gmail com>
Date: Wed, 29 Mar 2006 08:09:00 -0500

MITM is a big problem if your users don't have a functional understanding of
key fingerprint difference warnings and use clients like PuTTY that allow
you to accept a changed key with a single click.


On 3/28/06, winsoc <winsoc () googlemail com> wrote:


Hello List,

not sure if this is a bit too off-topic. But I wanted to ask if there are
any Security problems when PasswordAuthentication gets changed from no to
yes on OpenSSH4.1

Regards.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

SSHD - PasswordAuthentication no/yes winsoc (Mar 28)
- Re: SSHD - PasswordAuthentication no/yes Q Beukes (Mar 28)
- Message not available
  - Re: SSHD - PasswordAuthentication no/yes Andrew A (Mar 29)