Date: Mon, 1 Jun 1998 19:58:16 -0400 (EDT) From: Robert Watson <robert@cyrus.watson.org> To: Eivind Eklund <eivind@yes.no> Cc: Poul-Henning Kamp <phk@critter.freebsd.dk>, "J.A. Terranson" <sysadmin@mfn.org>, "freebsd-security@FreeBSD.ORG" <freebsd-security@FreeBSD.ORG> Subject: Re: MD5 v. DES? Message-ID: <Pine.BSF.3.96.980601195558.6508F-100000@fledge.watson.org> In-Reply-To: <19980602015132.55099@follo.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, 2 Jun 1998, Eivind Eklund wrote: > On Mon, Jun 01, 1998 at 07:46:35PM -0400, Robert Watson wrote: > > Accept kerberosIV, local passwords, one-time-passwords when using ssh or > > kerberized rlogin. > > The SSH-1 protocol doesn't make it possible to use s/key for one-time > passwords, at least. There is no provision for showing a challenge to > the user. This is a problem with a protocol that claims to be a secure shell protocol. For the sake of example, then, how about IMAP using SASL support for s/key over SSL? Robert N Watson ---- Carnegie Mellon University http://www.cmu.edu/ Trusted Information Systems http://www.tis.com/ SafePort Network Services http://www.safeport.com/ robert@fledge.watson.org http://www.watson.org/~robert/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.980601195558.6508F-100000>