Re: Generic challenge-repsonse aunetication in ssh2

[Tero Kivinen]

Andreas Siegert writes:
> Unfortunately the server can not force a certain sequence of methods
> to try or restrict methods based on usr id.
> Both of those things are desperately needed.

Yes it can. The protocol allows server to send just one authentication
method that it wants the client to perform next, and then continue
with the next one. This selection of authentication mehtod can also be
done based on the user name. 
-- 
[EMAIL PROTECTED]                               Work : +358-9-4354 3218
SSH Communications Security                  http://www.ssh.fi/
SSH IPSEC Toolkit                            http://www.ssh.fi/ipsec/