bugzilla-daemon at bugzilla
Oct 4, 2011, 2:44 PM
Post #3 of 5
[Bug 1829] auth-rsa.c: move auth_key_is_revoked() call from auth_rsa_verify_response() to auth_rsa_key_allowed()
[In reply to]
--- Comment #8 from Damien Miller <djm [at] mindrot> 2011-10-05 08:44:08 EST ---
Remember what is happening here: a key has been suggested by the client
and is being compared against the lines in authorized_keys. *After* the
modulus has been matched, we check whether the key is revoked. If it is
revoked, then there is no point in checking further in the file to see
if an non-revoked entry of the same key exists.
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
openssh-bugs mailing list
openssh-bugs [at] mindrot