git: Remove most local modifications from OpenSSH.
Thomas Nikolajsen
thomas.nikolajsen at mail.dk
Fri Aug 12 01:17:00 PDT 2016
Still cleartext password is typically short, as user types it manually, so brute force is much easier than key based auth.
-thomas
Konstantin Kulikov wrote:
> Passwords are sent over encrypted channel, so only the server you connect
> to can see the password. Same happens when challenge-response authentication is used.
>
> On Thu, Aug 11, 2016 at 11:29 PM Thomas Nikolajsen <
> thomas.nikolajsen at mail.dk> wrote:
>
> > This commit changed our sshd(8) default: now cleartext passwords are enabled.
> > I don't think this is what we want.
> >
> > I do understand that complicated and non essential patches are too much work to maintain,
> > but this is simple and essential IMO. Hope you agree.
> >
> > -thomas
> >
> > http://lists.dragonflybsd.org/pipermail/commits/2016-August/624229.html
..
More information about the Users
mailing list