On Tue, Jul 09, 2002 at 15:59:04 +0200, Dag-Erling Smorgrav wrote:
> What if the client is untrusted?  Do you find it reasonable to allow
> users to type their password on an untrusted client?  Many of our
> users use OPIE for precisely this scenario - reading their mail on an
> untrusted machine in the USENIX terminal room.


BTW, OPIE auth broken too that way. In any ssh client I use I see _no_
OPIE prompt like:

otp-md5 9960 pa4106 ext
Password:

only standard password prompt:

[EMAIL PROTECTED] password:

It mean I can't enter correct OPIE password even when I wish to use it
intentionally!


-- 
Andrey A. Chernov
http://ache.pp.ru/

To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message

Reply via email to