Can anyone quickly explain the challenge response based methods?

I use conventional password authentication or PubkeyAuthentication, so I
wonder if this ChallengeResponseAuthentication is even needed.

(Also, on some Debian "stable" boxes I was still using Debian packaged
patched version of 1.2.3, so I guess I wasn't even vulnerable.)

   Jeremy C. Reed
   http://www.reedmedia.net/