From owner-freebsd-security@FreeBSD.ORG Tue Mar 3 02:31:09 2009 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B89A61065672 for ; Tue, 3 Mar 2009 02:31:09 +0000 (UTC) (envelope-from jon.passki@hursk.com) Received: from yx-out-2324.google.com (yx-out-2324.google.com [74.125.44.28]) by mx1.freebsd.org (Postfix) with ESMTP id 742478FC0A for ; Tue, 3 Mar 2009 02:31:09 +0000 (UTC) (envelope-from jon.passki@hursk.com) Received: by yx-out-2324.google.com with SMTP id 31so1455692yxl.13 for ; Mon, 02 Mar 2009 18:31:08 -0800 (PST) Received: by 10.142.174.18 with SMTP id w18mr3321608wfe.239.1236046200921; Mon, 02 Mar 2009 18:10:00 -0800 (PST) Received: from ?10.1.2.34? (v-209-98-139-33.mn.visi.com [209.98.139.33]) by mx.google.com with ESMTPS id 30sm14264915wfd.35.2009.03.02.18.09.59 (version=TLSv1/SSLv3 cipher=RC4-MD5); Mon, 02 Mar 2009 18:10:00 -0800 (PST) References: <20090302021415.GU5602@noncombatant.org> <004201c99b97$977935c0$c66ba140$@rich@itreign.com> Message-Id: <4A6B8988-1B09-4B5F-BE82-BAE5B1A4673F@hursk.com> From: Jon Passki To: Rich Healey In-Reply-To: <004201c99b97$977935c0$c66ba140$@rich@itreign.com> Content-Type: text/plain; charset=us-ascii; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit X-Mailer: iPhone Mail (5H11) Mime-Version: 1.0 (iPhone Mail 5H11) Date: Mon, 2 Mar 2009 20:09:55 -0600 Cc: "" Subject: Re: OPIE considered insecure X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Mar 2009 02:31:10 -0000 Could we please kill this thread if it does not have anymore to contribute to FreeBSD security specifically? Jon On Mar 2, 2009, at 6:32 PM, "Rich Healey" wrote: > > > -----Original Message----- > From: owner-freebsd-security@freebsd.org > [mailto:owner-freebsd-security@freebsd.org] On Behalf Of Chris Palmer > Sent: Monday, 2 March 2009 1:14 PM > To: freebsd-security@freebsd.org > Subject: Re: OPIE considered insecure > > Rich Healey writes: > >> I'm thinking about implementing OPIE, but after reading this I'm >> not so >> sure. What's consensus on the best approach to one time logins? > > Why are people logging into their remote servers from assumed- > untrustworthy > clients at all? > _______________ > > Because a truly secure machine (ie one that's switched off) isn't > much use > to me. > > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org > "