Steve, please review openssh 1:3.8.1-8.sarge.1 for testing; it fixes RC
bug #250369. The necessary changes are a bit involved, I'm afraid.
openssh (1:3.8.1p1-8.sarge.1) unstable; urgency=high
* If PasswordAuthentication is disabled, then offer to disable
ChallengeResponseAuthentication too. The current PAM code will attempt
password-style authentication if ChallengeResponseAuthentication is
enabled (closes: #250369).
* This will ask a question of anyone who installed fresh with 1:3.8p1-2 or
later and then upgraded. Sorry about that ... for this reason, the
default answer is to leave ChallengeResponseAuthentication enabled.
-- Colin Watson <[EMAIL PROTECTED]> Wed, 6 Oct 2004 14:21:55 +0100
Thanks,
--
Colin Watson [EMAIL PROTECTED]
