From owner-freebsd-security  Tue Jun  2 04:57:06 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id EAA10296
          for freebsd-security-outgoing; Tue, 2 Jun 1998 04:57:06 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from portal.eltex.spb.ru ([195.19.195.34])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id EAA10282
          for <freebsd-security@FreeBSD.ORG>; Tue, 2 Jun 1998 04:56:55 -0700 (PDT)
          (envelope-from ark@eltex.spb.ru)
From: ark@eltex.spb.ru
Received: from paranoid.eltex.spb.ru (border1.eltex.spb.ru [194.58.218.11] (may be forged))
	by portal.eltex.spb.ru (8.8.8/8.8.8) with ESMTP id PAA29563;
	Tue, 2 Jun 1998 15:45:41 +0400 (MSD)
Received: (from ark@localhost) by paranoid.eltex.spb.ru (8.8.8/8.7.3) id PAA20263; Tue, 2 Jun 1998 15:47:56 GMT
Date: Tue, 2 Jun 1998 15:47:56 GMT
Message-Id: <199806021547.PAA20263@paranoid.eltex.spb.ru>
In-Reply-To: <19980602133226.00055@follo.net> from "Eivind Eklund <eivind@yes.no>"
Organization: "Klingon Imperial Intelligence Service"
Subject: d.eltex.spb.ru,        freebsd-security@FreeBSD.ORG
To: eivind@yes.no
Cc: ark@eltex.spb.ru, robert+freebsd@cyrus.watson.org,
        Poul-Henning@paranoid.eltex.spb.ru, Kamp@paranoid.eltex.spb.ru,
        phk@critter.freebsd.dk, "J.A.,Terranson"@paranoid.eltex.spb.ru,
        sysadmin@mfn.org, "freebsd-security@FreeBSD.ORG"@paranoid.eltex.spb.ru,
        freebsd-security@FreeBSD.ORG
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

-----BEGIN PGP SIGNED MESSAGE-----

nuqneH,

Eivind Eklund <eivind@yes.no> said :

> On Tue, Jun 02, 1998 at 12:01:01PM +0000, ark@eltex.spb.ru wrote:
> > > The SSH-1 protocol doesn't make it possible to use s/key for one-time
> > > passwords, at least.  There is no provision for showing a challenge to
> > > the user.
> > 
> > Don't know what is "SSH-1" protocol you are reffering to, but ssh
> > (at least versions 1.2.20 and newer) do support OTP and even 
> > authentication server.
> 
> Are you referring to the SecurID support?  This is challenge-free, and
> this comment is from the third paragraph of README.SECURID in the ssh
> distribution:

[dd]

Nope, i mean TISAuthentication option which definitely _can_ be 
challenge-based.  

                                     _     _  _  _  _      _  _
 {::} {::} {::}  CU in Hell          _| o |_ | | _|| |   / _||_|   |_ |_ |_
 (##) (##) (##)        /Arkan#iD    |_  o  _||_| _||_| /   _|  | o |_||_||_|
 [||] [||] [||]            Do i believe in Bible? Hell,man,i've seen one!

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv

iQCVAwUBNXQeq6H/mIJW9LeBAQFpJwP/WQDaPN9OtOejNyZTe3/YV9PICdDtJ3mo
uHFFmtVV8xaW7GvIbQBU2fJFA1WT7IIDdXIc+c9VNTzQoMlFG3mu4xCto7+Wkyvg
gb7XlfYRmKTTp6mgCMvnly4yH3MGfCUQNdtvz3+Y+wGRkO3WB4stxMq1QXLYTZCg
Xle9XIZxais=
=1aHm
-----END PGP SIGNATURE-----

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message