[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Jailkit-users] Question on keyboard interactive versus passwordauth

From: Al Sheldon
Subject: RE: [Jailkit-users] Question on keyboard interactive versus passwordauthentication
Date: Mon, 5 Jun 2006 18:17:44 -0700

Actually, from what I have been able to determine the only difference is
that password authentication also allows you to change your password.
In my case I wish to control the password selection to verify that
appropriate password constraints are met.  So I plan on continuing to
use keyboard interactive.  If anyone has other reasons why keyboard
interactive would be a better choice I would like to know.


Al Sheldon
Systems Administrator
Jefferson Behavioral Health
PO Box 1870
Grants Pass, OR 97528
541.955.9565 (ext. 109)
541.955.9707 (fax)
541.761.5317 (cell)
Confidentiality Notice - The information contained in this electronic
mail and any attachments is intended for the sole use of the intended
recipient(s), and may contain confidential and privileged information
protected by laws of the State of Oregon and the United States of
America.  Any unauthorized review, use, disclosure or distribution is
prohibited by law.  If you are not the intended recipient, please notify
the sender by reply e-mail, and destroy all copies of the original
message from your computer.
-----Original Message-----
From: address@hidden
[mailto:address@hidden On Behalf Of
Olivier Sessink
Sent: Monday, June 05, 2006 12:47 AM
To: address@hidden
Subject: Re: [Jailkit-users] Question on keyboard interactive versus

Al Sheldon wrote:
> My default setup of Jailkit on a Suse Linux 9.3 has 
> PasswordAuthentication set to no.  I have a vendor who has struggled 
> with connecting to our SFTP site until they realized that password 
> authentication was set to no and that they needed to utilize 
> keyboard-interactive.  They have requested I set
> to yes.  I have researched this and the only negative I see is that it

> may allow the user to change their password if I turn on 
> PasswordAuthentication as a method to connect.   This is sufficient
> me to leave it off, however I would like to know if there are any
> consequences to turning it on (to have more reasons to leave it off)
> is this the only way to make password authentication function?

keyboard-interactive == password authentication, right? perhaps I'm too 
jet-lagged, but at this moment I know of two mechanisms in ssh, which is

logging in with a server-side known key, or with a password.. I guess 
I'm too jet-lagged, because I don't really understand the question..


Jailkit-users mailing list

reply via email to

[Prev in Thread] Current Thread [Next in Thread]