Date: Sat, 4 Aug 2001 16:31:30 -0700 From: Bill Fenner <fenner@research.att.com> To: mark@grondar.za Cc: ache@nagual.pp.ru, cvs-committers@freebsd.org, cvs-all@freebsd.org Subject: Re: cvs commit: src/lib/libopie Makefile Message-ID: <200108042331.QAA06414@windsor.research.att.com> References: <200108031805.LAA19695@windsor.research.att.com> <200108041544.f74FiJr14075@grimreaper.grondar.za>
next in thread | previous in thread | raw e-mail | index | archive | help
>> "echo mypassphrase | env DISPLAY=:0 otp-md5 ..." > >That is a bug that needs to be fixed in its own right. You're kidding, right? They're all heuristics, since there's no way to determine for real whether or not input to the program "can be sniffed", and any heuristic can be worked around. >-f is disabled if insecure mode is not compiled in. Which is why I was suggesting that we compile it in by default. ssh happily prompts you for your passphrase no matter how you're logged in. Opie tries to protect people from themselves, but since that's not possible, it does an imperfect job. At least Opie requires explicit action and warns loudly that you may be exposing your secret. Opie's default distribution chooses security over usability. This choice normally encourages either misuse or disuse of the security system -- so let's make the usability compromise, with appropriate warnings (that are already present in the opie sources). Bill To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200108042331.QAA06414>