hello everybody, environment: -SuSE 7.3 -using md5 passwords (overwritten /etc/pam.d/* files after install from /usr/share/doc/packages/pam/md5.config/*) -openssh-3.3p1-6 -using ssh version 2 (Protocol 2,1); for server and client --- problem description: after updating openssh due to recent vulnerability discovery, I no longer can ssh into machine; tells me "permission denied, try again" (as if the password wasn't good). however, public key authentication works as before, but it's not an option right now, as I have many machines, and having to create and copy the keys to be able to scp from/to every other machine isn't a practical solution (I have many users also) --- what I tried: tampering with /etc/pam.d/sshd with no luck changing /etc/ssh/sshd_config to read "Compression no" and "UsePrivilegeSeparation no" (those parameters seemed to be new in this updated rpm) any ideas/hints/comments? cheers, dragos