- (djm) Add new server configuration directive 'PAMAuthenticationViaKbdInt' (default: off), implies KbdInteractiveAuthentication. Suggestion from markus@

commit: f815442116071c69525915018edf5a32081bddc2 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Wed Apr 25 22:44:14 2001 +1000
committer: Damien Miller <djm@mindrot.org> Wed Apr 25 22:44:14 2001 +1000
tree: d7c25bb4c56ee54699a2d06f061fc7c4e9e85e06
parent: 768f975b1394cc0c0313b69175ea8fcc3a4dc2bc [diff] [blame]
diff --git a/sshd_config b/sshd_config
index fda1456..8c411e4 100644
--- a/sshd_config
+++ b/sshd_config

@@ -46,10 +46,12 @@
 PasswordAuthentication yes
 PermitEmptyPasswords no
 
-# Comment to enable s/key passwords or PAM interactive authentication
-# NB. Neither of these are compiled in by default. Please read the
-# notes in the sshd(8) manpage before enabling this on a PAM system.
-ChallengeResponseAuthentication no
+# Uncomment to disable s/key passwords 
+#ChallengeResponseAuthentication no
+
+# Uncomment to enable PAM keyboard-interactive authentication 
+# Warning: enabling this may bypass the setting of 'PasswordAuthentication'
+#PAMAuthenticationViaKbdInt yes
 
 # To change Kerberos options
 #KerberosAuthentication no
commit	f815442116071c69525915018edf5a32081bddc2	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Wed Apr 25 22:44:14 2001 +1000
committer	Damien Miller <djm@mindrot.org>	Wed Apr 25 22:44:14 2001 +1000
tree	d7c25bb4c56ee54699a2d06f061fc7c4e9e85e06
parent	768f975b1394cc0c0313b69175ea8fcc3a4dc2bc [diff] [blame]