2010/3/24 Berni Elbourn <be...@elbournb.fsnet.co.uk>: > consul tores wrote: >> >> Hello >> >> I do not want to create panic, but playing with my Lenny Laptop, >> against Squezee and ArchLinux; i got (literaly) access without >> password. >> Conditions: >> New installation in my testing box, from Lenny i was ready to edit >> sshd_config after intallation, and i opened a console, i did ssh >> r...@ip, when ssh asked me for password, i opened a window doing >> fish://r...@ip, magically i was inside my Squezee or ArchLinux box. >> I tested it few times and it was the same thing 1/20 aproximately, i >> could not find a logical explanation but it happened. has someone >> found something similar? >> >> francisco >> >> > > Sure, just set a valid cached password for the target systems. > > I have always found fish to be unreliable so your 1 in 20 sounds about > normal to me. > > Berni
i tested it on OpenBSD and nothing happens, could be pam responsable of it? After adding rsa/dsa.key, everything goes well. francisco. -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/cdeec9051003241240v5d8afee1t2100e0324b04d...@mail.gmail.com
