upstream: Improve description of KbdInteractiveAuthentication.

author dtucker@openbsd.org <dtucker@openbsd.org>

Tue, 3 Dec 2024 14:12:47 +0000 (14:12 +0000)

committer Darren Tucker <dtucker@dtucker.net>

Tue, 3 Dec 2024 14:55:30 +0000 (01:55 +1100)
author dtucker@openbsd.org <dtucker@openbsd.org>
Tue, 3 Dec 2024 14:12:47 +0000 (14:12 +0000)
committer Darren Tucker <dtucker@dtucker.net>
Tue, 3 Dec 2024 14:55:30 +0000 (01:55 +1100)
diff --git a/sshd_config b/sshd_config

index 36894ace503d24ea714606c3a6b4d2be0a096a94..0f4a3a7247a65e2d79efb4bd6ad56f8630247fb8 100644 (file)
--- a/sshd_config
+++ b/sshd_config
@@ -1,4 +1,4 @@
-#      $OpenBSD: sshd_config,v 1.104 2021/07/02 05:11:21 dtucker Exp $
+#      $OpenBSD: sshd_config,v 1.105 2024/12/03 14:12:47 dtucker Exp $
  
  # This is the sshd server system-wide configuration file.  See
  # sshd_config(5) for more information.
@@ -53,11 +53,13 @@ AuthorizedKeysFile  .ssh/authorized_keys
  # Don't read the user's ~/.rhosts and ~/.shosts files
  #IgnoreRhosts yes
  
-# To disable tunneled clear text passwords, change to no here!
+# To disable tunneled clear text passwords, change to "no" here!
  #PasswordAuthentication yes
  #PermitEmptyPasswords no
  
-# Change to no to disable s/key passwords
+# Change to "no" to disable keyboard-interactive authentication.  Depending on
+# the system's configuration, this may involve passwords, challenge-response,
+# one-time passwords or some combination of these and other methods.
  #KbdInteractiveAuthentication yes
  
  # Kerberos options
author	dtucker@openbsd.org <dtucker@openbsd.org>
	Tue, 3 Dec 2024 14:12:47 +0000 (14:12 +0000)
committer	Darren Tucker <dtucker@dtucker.net>
	Tue, 3 Dec 2024 14:55:30 +0000 (01:55 +1100)