Guy Helmer <[email protected]> writes: > I have a shell user who is able to login to his accounts via sshd on > FreeBSD 8.2 using any password. The user had a .ssh/id_rsa and > .ssh/id_rsa.pub key pair without a password but nullok was not > specified, so I think this should be considered a bug.
Agreed. Not quite sure how to fix it, but I'll look into it and try to get a patch in before 9.0. DES -- Dag-Erling Smørgrav - [email protected] _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"
