Date: Mon, 2 Mar 2009 20:09:55 -0600 From: Jon Passki <jon.passki@hursk.com> To: Rich Healey <healey.rich@itreign.com> Cc: "<freebsd-security@freebsd.org>" <freebsd-security@freebsd.org> Subject: Re: OPIE considered insecure Message-ID: <4A6B8988-1B09-4B5F-BE82-BAE5B1A4673F@hursk.com> In-Reply-To: <004201c99b97$977935c0$c66ba140$@rich@itreign.com> References: <20090302021415.GU5602@noncombatant.org> <004201c99b97$977935c0$c66ba140$@rich@itreign.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Could we please kill this thread if it does not have anymore to contribute to FreeBSD security specifically? Jon On Mar 2, 2009, at 6:32 PM, "Rich Healey" <healey.rich@itreign.com> wrote: > > > -----Original Message----- > From: owner-freebsd-security@freebsd.org > [mailto:owner-freebsd-security@freebsd.org] On Behalf Of Chris Palmer > Sent: Monday, 2 March 2009 1:14 PM > To: freebsd-security@freebsd.org > Subject: Re: OPIE considered insecure > > Rich Healey writes: > >> I'm thinking about implementing OPIE, but after reading this I'm >> not so >> sure. What's consensus on the best approach to one time logins? > > Why are people logging into their remote servers from assumed- > untrustworthy > clients at all? > _______________ > > Because a truly secure machine (ie one that's switched off) isn't > much use > to me. > > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org > "
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4A6B8988-1B09-4B5F-BE82-BAE5B1A4673F>