- (dtucker) [sshd_config sshd_config.5] Update UsePAM to reflect current

reality. Pointed out by tryponraj at gmail.com.
author: Darren Tucker <dtucker@zip.com.au> 2006-02-23 21:35:30 +1100
committer: Darren Tucker <dtucker@zip.com.au> 2006-02-23 21:35:30 +1100
commit: a4904f7bf19fb091b9fcf8059dedd5c5198fc039 (patch)
tree: 384681017d1879a14619dabf375b265bf6084f7c /sshd_config
parent: 94413cf32ba932537ef215b07eb1833e297fcae5 (diff)
1 files changed, 7 insertions, 6 deletions
diff --git a/sshd_config b/sshd_config
index 4957dd1a6..57f9a17bb 100644
--- a/sshd_config
+++ b/sshd_config
@@ -71,12 +71,13 @@
 # Set this to 'yes' to enable PAM authentication, account processing, 
 # and session processing. If this is enabled, PAM authentication will 
-# be allowed through the ChallengeResponseAuthentication mechanism. 
+# be allowed through the ChallengeResponseAuthentication and
-# Depending on your PAM configuration, this may bypass the setting of 
+# PasswordAuthentication.  Depending on your PAM configuration,
-# PasswordAuthentication, PermitEmptyPasswords, and 
+# PAM authentication via ChallengeResponseAuthentication may bypass
-# "PermitRootLogin without-password". If you just want the PAM account and 
+# the setting of "PermitRootLogin without-password".
-# session checks to run without PAM authentication, then enable this but set 
+# If you just want the PAM account and session checks to run without
-# ChallengeResponseAuthentication=no
+# PAM authentication, then enable this but set PasswordAuthentication
+# and ChallengeResponseAuthentication to 'no'.
 #UsePAM no
 #AllowTcpForwarding yes
author	Darren Tucker <dtucker@zip.com.au>	2006-02-23 21:35:30 +1100
committer	Darren Tucker <dtucker@zip.com.au>	2006-02-23 21:35:30 +1100
commit	a4904f7bf19fb091b9fcf8059dedd5c5198fc039 (patch)
tree	384681017d1879a14619dabf375b265bf6084f7c /sshd_config
parent	94413cf32ba932537ef215b07eb1833e297fcae5 (diff)

diff --git a/sshd_config b/sshd_config index 4957dd1a6..57f9a17bb 100644 --- a/sshd_config +++ b/sshd_config
@@ -71,12 +71,13 @@
71		71
72	# Set this to 'yes' to enable PAM authentication, account processing,	72	# Set this to 'yes' to enable PAM authentication, account processing,
73	# and session processing. If this is enabled, PAM authentication will	73	# and session processing. If this is enabled, PAM authentication will
74	# be allowed through the ChallengeResponseAuthentication mechanism.	74	# be allowed through the ChallengeResponseAuthentication and
75	# Depending on your PAM configuration, this may bypass the setting of	75	# PasswordAuthentication. Depending on your PAM configuration,
76	# PasswordAuthentication, PermitEmptyPasswords, and	76	# PAM authentication via ChallengeResponseAuthentication may bypass
77	# "PermitRootLogin without-password". If you just want the PAM account and	77	# the setting of "PermitRootLogin without-password".
78	# session checks to run without PAM authentication, then enable this but set	78	# If you just want the PAM account and session checks to run without
79	# ChallengeResponseAuthentication=no	79	# PAM authentication, then enable this but set PasswordAuthentication
		80	# and ChallengeResponseAuthentication to 'no'.
80	#UsePAM no	81	#UsePAM no
81		82
82	#AllowTcpForwarding yes	83	#AllowTcpForwarding yes