Date: Thu, 25 Apr 2002 08:59:31 -0700 From: "David O'Brien" <obrien@FreeBSD.org> To: Josef Karthauser <joe@tao.org.uk> Cc: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/crypto/openssh servconf.c sshd_config Message-ID: <20020425085931.B68843@dragon.nuxi.com> In-Reply-To: <20020425113715.GB21335@genius.tao.org.uk>; from joe@tao.org.uk on Thu, Apr 25, 2002 at 12:37:15PM %2B0100 References: <200204250559.g3P5xrS51528@freefall.freebsd.org> <xzp662gyq1m.fsf@flood.ping.uio.no> <20020425113715.GB21335@genius.tao.org.uk>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, Apr 25, 2002 at 12:37:15PM +0100, Josef Karthauser wrote: > Can you find a better way of preventing this: > > genius% ssh dhcp59 > otp-md5 228 dh6546 ext > S/Key Password: > otp-md5 170 dh0164 ext > S/Key Password: > otp-md5 170 dh0164 ext > S/Key Password: > joe@dhcp59.tao.org.uk's password: > > We shouldn't be doing S/Key by default. It isn't even S/Key -- notice the challenge changes each time (and it is an OPIE, not S/Key challenge). It is some bullshit, security thru obscurity crap someone added. I do use real S/Key on releng4 boxes and that is broken right now too. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020425085931.B68843>