2 files changed, 7 insertions, 5 deletions
diff --git a/ChangeLog b/ChangeLog
index 2fca0f7fc..0a3ebd8b7 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -143,6 +143,9 @@
   - markus@cvs.openbsd.org 2002/01/11 23:02:18
     [readpass.c]
     use _PATH_TTY
+   - markus@cvs.openbsd.org 2002/01/11 23:02:51
+     [auth2-chall.c]
+     use snprintf; mouring@
 20020121
@@ -7291,4 +7294,4 @@
 - Wrote replacements for strlcpy and mkdtemp
 - Released 1.0pre1
-$Id: ChangeLog,v 1.1763 2002/01/22 12:24:51 djm Exp $
+$Id: ChangeLog,v 1.1764 2002/01/22 12:25:08 djm Exp $
diff --git a/auth2-chall.c b/auth2-chall.c
index 92d0020e0..a1f96392e 100644
--- a/auth2-chall.c
+++ b/auth2-chall.c
@@ -23,7 +23,7 @@
 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */
 #include "includes.h"
-RCSID("$OpenBSD: auth2-chall.c,v 1.14 2002/01/11 20:14:11 markus Exp $");
+RCSID("$OpenBSD: auth2-chall.c,v 1.15 2002/01/11 23:02:51 markus Exp $");
 #include "ssh2.h"
 #include "auth.h"
@@ -291,9 +291,8 @@ input_userauth_info_response(int type, u_int32_t seq, void *ctxt)
        len = strlen("keyboard-interactive") + 2 +
                strlen(kbdintctxt->device->name);
        method = xmalloc(len);
-        strlcpy(method, "keyboard-interactive", len);
+        snprintf(method, len, "keyboard-interactive/%s",
-        strlcat(method, "/", len);
+            kbdintctxt->device->name);
-        strlcat(method, kbdintctxt->device->name, len);
        if (!authctxt->postponed) {
                if (authenticated) {