[OpenAFS] home on afs woes

Russ Allbery rra@stanford.edu
Thu, 12 Jan 2006 18:41:21 -0800

Jeffrey Hutzelman <jhutz@cmu.edu> writes:

> However, they do it that way not as part of some misguided attempt at
> "security", but because of the constraints imposed by the way their SSH
> protocol parser interacts with keyboard-interactive.  Fixing it would
> require significant work, not to mention actually getting the fix
> accepted.

Could you give me more details on why that would be the case?  It doesn't
intuitively make sense to me why proxying the PAM interaction through yet
another level of indirection would help.  Some kind of a deadlock
situation where you don't know which source of input to wait for, perhaps?

Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>