nixpkgs-suyu/modules/services/networking/ssh
Mathijs Kwik a1e86494d0 made challenge-response authentication method configurable for openssh
challenge-response is an authentication method that does not need the
plain text password to be emitted over the (encrypted) connection.
This is nice if you don't fully trust the server.

It is enabled (upstream) by default.

To the end user, it still looks like normal password authentication,
but instead of sending it, it is used to hash some challenge.

This means that if you don't want passwords to be used ever at all,
and just stick to public key authentication, you probably want to
disable this option too.

svn path=/nixos/trunk/; revision=33513
2012-04-01 10:54:17 +00:00
..
lshd.nix Reverting revisions 30103-30106: "always set nixpkgs.config.{state,store}Dir", etc. 2011-10-30 15:19:58 +00:00
sshd.nix made challenge-response authentication method configurable for openssh 2012-04-01 10:54:17 +00:00