From owner-cvs-all  Fri Sep 28  9: 4: 9 2001
Delivered-To: cvs-all@freebsd.org
Received: from horsey.gshapiro.net (horsey.gshapiro.net [209.220.147.178])
	by hub.freebsd.org (Postfix) with ESMTP
	id 5BAF537B40F; Fri, 28 Sep 2001 09:04:02 -0700 (PDT)
Received: from horsey.gshapiro.net (gshapiro@localhost [IPv6:::1])
	by horsey.gshapiro.net (8.12.1.Alpha0/8.12.1.Alpha0) with ESMTP id f8SG41b2030087
	(version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO);
	Fri, 28 Sep 2001 09:04:01 -0700 (PDT)
Received: (from gshapiro@localhost)
	by horsey.gshapiro.net (8.12.1.Alpha0/8.12.0/Submit) id f8SG41se030084;
	Fri, 28 Sep 2001 09:04:01 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <15284.40817.364418.89517@horsey.gshapiro.net>
Date: Fri, 28 Sep 2001 09:04:01 -0700
From: Gregory Neil Shapiro <gshapiro@FreeBSD.org>
To: nate@yogotech.com (Nate Williams)
Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/crypto/openssh atomicio.h auth-chall.c auth2-chall.c canohost.h clientloop.h groupaccess.c groupaccess.h kexdh.c kexgex.c log.h mac.c mac.h misc.c misc.h pathnames.h
In-Reply-To: <15284.36137.254842.551909@nomad.yogotech.com>
References: <200109280133.f8S1Xr363615@freefall.freebsd.org>
	<20010928015644.N84277-100000@achilles.silby.com>
	<20010928013527.A8101@xor.obsecurity.org>
	<15284.36137.254842.551909@nomad.yogotech.com>
X-Mailer: VM 6.96 under 21.5  (beta1) "anise" XEmacs Lucid
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

nate> So, in other words, there is really no point in having both protocols
nate> listed in the same line, since only one protocol is ever attempted.

nate> A better description of the protocol line woudl be:

nate> "Protocol 1"
nate> *OR*
nate> "Protocol 2"

nate> Since in fact, it doesn't try the first protocol, and if it fails, then
nate> try the second protocol.  It always sticks with the primary protocol.

No, it does make sense to have both.  If you didn't list Protocol 1, then
an older ssh (that only supports protocol 1) would not be able to login to
your machine.  Only one protocol is ever attempted as you said, but which
one is decided by the identification given by the ssh client.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message