Red Hat and CentOS (5, 6, 7) systems don't seem to be affected. sshd_config explicitly sets ChallengeResponseAuthentication=no, and KbdInteractiveAuthentication defaults to the value specified for the former setting.
↧
Channel:
OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass) : netsec
X
Are you the publisher?
Claim or
contact us
about this channel.
X
0
Channel Details:
- Title: OpenSSH keyboard-interactive authentication brute force vulnerability (MaxAuthTries bypass) : netsec
- Channel Number: 76401312
- Language: English
- Registered On: April 11, 2021, 8:58 am
- Number of Articles: 27
- Latest Snapshot: June 4, 2021, 3:08 pm
- RSS URL: https://www.reddit.com/r/netsec/comments/3dnzcq/openssh_keyboardinteractive_authentication_brute/index.rss
- Publisher: https://www.reddit.com/r/netsec/comments/3dnzcq/openssh_keyboardinteractive_authentication_brute/index
- Description:
- Catalog: //maxauthtries1.rssing.com/catalog.php?indx=76401312
© 2025 //www.rssing.com