>> 2) The client gets disconnected before MaxAuthTries is reached. If I >> have it set to 6, I get 5 only tries: > > Your log level isn't high enough to see it, but I suspect you have a > failed pubkey attempt before the password attempts. You should be > able to see it if you add "-vvv" to the command line.
$ ssh-add -l The agent has no identities. debug1: userauth-request for user fred service ssh-connection method none [preauth] debug1: attempt 0 failures 0 [preauth] debug1: userauth-request for user fred service ssh-connection method keyboard-interactive [preauth] debug1: attempt 1 failures 0 [preauth] debug1: keyboard-interactive devs [preauth] debug1: auth2_challenge: user=fred devs= [preauth] debug1: kbdint_alloc: devices 'bsdauth' [preauth] debug1: auth2_challenge_start: trying authentication method 'bsdauth' [preauth] debug1: userauth-request for user fred service ssh-connection method password [preauth] debug1: attempt 2 failures 1 [preauth] Failed password for fred from 192.0.2.246 port 57386 ssh2 debug1: userauth-request for user fred service ssh-connection method password [preauth] > [...] >> Is there any way to get the full number of MaxAuthTries log in attempts? > > Assuming my guess above is correct, PreferredAuthentications=password > > -- > Darren Tucker (dtucker at zip.com.au) > GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860 37F4 9357 ECEF 11EA A6FA (new) > Good judgement comes with experience. Unfortunately, the experience > usually comes from bad judgement.
