Date: Wed, 10 Jul 2002 15:50:23 +0400 From: "Andrey A. Chernov" <ache@nagual.pp.ru> To: Dag-Erling Smorgrav <des@ofug.org> Cc: current@freebsd.org Subject: Re: OPIE auth broken too (was Re: PasswordAuthentication not works in sshd) Message-ID: <20020710115021.GA28478@nagual.pp.ru> In-Reply-To: <xzpd6tvj3h3.fsf@flood.ping.uio.no> References: <20020702114530.GB837@nagual.pp.ru> <xzpn0tacp9c.fsf@flood.ping.uio.no> <20020709124943.GA15259@nagual.pp.ru> <xzphej9jb3i.fsf@flood.ping.uio.no> <20020709133611.GA17322@nagual.pp.ru> <xzpd6txj93r.fsf@flood.ping.uio.no> <20020709164108.GA19075@nagual.pp.ru> <xzpr8icinnb.fsf@flood.ping.uio.no> <20020709232559.GA23499@nagual.pp.ru> <xzpd6tvj3h3.fsf@flood.ping.uio.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Jul 10, 2002 at 12:12:56 +0200, Dag-Erling Smorgrav wrote: > "Andrey A. Chernov" <ache@nagual.pp.ru> writes: > > Consider following setup: OPIE is active and allow Unix plaintext > > passwords for local users only (i.e. common way of using OPIE). Then lets > > disable all sshd auth methods excepting "PasswordAuthentication yes" in > > sshd_config. > > Why? Why what? Sysadmin allows PasswordAuthentication only. > > > 2nd bug is true: no OTP prompt in the scenario above. > > Because PasswordAuthentication is not OPIE. And I say so too. Why OPIE is in the middle (via PAM)? But you say, it is enhancement (apparently non-working due to missing OTP prompt). -- Andrey A. Chernov http://ache.pp.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020710115021.GA28478>