On 7/20/21 8:15 PM, Darren Tucker wrote:
Long answer: in the first case the prompt was generated by the ssh client. In the second case the prompt was generated by the PAM stack and passed to [...]
Thanks, Darren, for the detailed explanation. Makes complete sense. In particular understanding that 'password' auth with PAM enabled doesn't competely bypass PAM but can't handle more complicated cases was necessary to explain the combination of behaviors and log messages I saw. I'll add rfc4256 to my bed-time reading stack... ;-) - Jürgen _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
