Take the usual precautions when upgrading. Also note that I have changed some configuration defaults: the server no longer accepts protocol version 1 nor password authentication by default. If your ssh client does not support ssh protocol version 2 or keyboard-interactive authentication, the recommended measures are: 1) get a better client 2) get a better client (I mean it) 3) get a better client (for real this time!) and as a last resort 4) enable procol version 1 and password authentication in sshd_config DES -- Dag-Erling Sm?rgrav - des@des.no
On Thu, Feb 26, 2004 at 12:30:03PM +0100, Dag-Erling Sm?rgrav wrote:> Take the usual precautions when upgrading. > > Also note that I have changed some configuration defaults: the server > no longer accepts protocol version 1 nor password authentication by > default. If your ssh client does not support ssh protocol version 2 > or keyboard-interactive authentication, the recommended measures are: > > 1) get a better client > 2) get a better client (I mean it) > 3) get a better client (for real this time!) > > and as a last resort > > 4) enable procol version 1 and password authentication in sshd_configWhat do you think about add the note into UPDATING? Thanks. -- Regards, /"\ ascii ribbon campaign Sergey "ozz" Osokin, \ / against html mail http://ozz.pp.ru/ X and news / \
Hi, Are there plans to MFC 3.8 as well as the new sshd_config defaults to RELENG_4 ? ---Mike At 06:30 AM 26/02/2004, Dag-Erling Sm?rgrav wrote:>Take the usual precautions when upgrading. > >Also note that I have changed some configuration defaults: the server >no longer accepts protocol version 1 nor password authentication by >default. If your ssh client does not support ssh protocol version 2 >or keyboard-interactive authentication, the recommended measures are: > > 1) get a better client > 2) get a better client (I mean it) > 3) get a better client (for real this time!) > >and as a last resort > > 4) enable procol version 1 and password authentication in sshd_config > >DES >-- >Dag-Erling Sm?rgrav - des@des.no >_______________________________________________ >freebsd-security@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-security >To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"