search for: incimented

...which doesn't seem right does it? Looking at the source it seems authctxt->attempt++ is being incrimented twice, once in auth2.c:input_userauth_request() and again in auth2-pam.c:input_userauth_info_response_pam(). Attached is a patch that fixed these symptoms for me. Attempt/failure are incimented one at a time, the last password prompt is no longer ignored, and the client is only disconnected after 6 (AUTH_FAIL_MAX) failures not after 6 attempts. I am not completly certain this behaviour matches the original intent so YMMV... M. -- WebCentral Pty Ltd Australia's #1 Interne...