On Sun, Jan 22, 2017 at 08:05:34PM +0100, foo fighter wrote:
> A further note: the value for <ChallengeResponseAuthentication> is "no" in
> its default configuration. "man sshd_config" states "The default is yes.". Is
> this inconsistent?
You missed the bit right up at the top of sshd_config(5), which says:
Note that the Debian openssh-server package sets several options as
standard in /etc/ssh/sshd_config which are not the default in
sshd(8):
ยท ChallengeResponseAuthentication no
[...]
"The default is yes" further down indicates that that's the default
built into sshd itself.
Thanks,
--
Colin Watson [[email protected]]
