Date: Mon, 6 Aug 2001 18:36:15 +0400 From: "Andrey A. Chernov" <ache@nagual.pp.ru> To: Mark Murray <mark@grondar.za> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/lib/libopie Makefile Message-ID: <20010806183611.B59504@nagual.pp.ru> In-Reply-To: <20010806180917.A59047@nagual.pp.ru> References: <20010806002848.B47300@nagual.pp.ru> <200108061014.f76AEdZ07896@grimreaper.grondar.za> <20010806180917.A59047@nagual.pp.ru>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Aug 06, 2001 at 18:09:21 +0400, Andrey A. Chernov wrote: > quick change in case secret phrase becomes known (f.e. asking admin to > change password each time by email weakens security). It means you can't Really, any type of admin asking weakens security, not email only (which is insecure channel), because of reaction time lag. During that period intruder can use secret phrase to do harm. In expired password situation, user don't have its access during that period which is inconvenient. -- Andrey A. Chernov http://ache.pp.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010806183611.B59504>