Date: Fri, 3 Aug 2001 22:19:15 +0400 From: "Andrey A. Chernov" <ache@nagual.pp.ru> To: Bill Fenner <fenner@research.att.com> Cc: mark@grondar.za, cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/lib/libopie Makefile Message-ID: <20010803221915.A16875@nagual.pp.ru> In-Reply-To: <200108031805.LAA19695@windsor.research.att.com> References: <20010803002200.C3285@nagual.pp.ru> <200108031444.f73EiFr06031@grimreaper.grondar.za> <20010803202823.A15671@nagual.pp.ru> <200108031805.LAA19695@windsor.research.att.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Aug 03, 2001 at 11:05:55 -0700, Bill Fenner wrote:
>
> At least opiekey and opiepasswd commands require -f flag to permit
> "insecure" behavior, so I thought that using -DINSECURE_OVERRIDE by
> default was OK there. I haven't looked into what the library does
> for -DINSECURE_OVERRIDE but perhaps it's also appropriate there by
> default too.
>
Exact the same thing I say. Why pretend to be more secure (really _false_
secure) since this sort of security can be easily overriden by even not so
expirienced hacker using
"echo mypassphrase | env DISPLAY=:0 otp-md5 ..."
and the same tricks?
BTW, in the same false secure style automatic SSH detection can be added
using getenv("SSH_CLIENT")
So, we have NO reasons to restrict -f or /etc/opieaccess usage.
--
Andrey A. Chernov
http://ache.pp.ru/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010803221915.A16875>