Date: Mon, 15 Aug 2005 23:07:21 -0400 From: Chuck Swiger <cswiger@mac.com> To: =?ISO-8859-1?Q?Dag-Erling_Sm=F8rgrav?= <des@des.no> Cc: freebsd-security@freebsd.org, freebsd-security@auscert.org.au Subject: Re: recompile sshd with OPIE? Message-ID: <43015869.6020307@mac.com> In-Reply-To: <86wtmnqtwr.fsf@xps.des.no> References: <200508150355.j7F3tISY066942@app.auscert.org.au> <86wtmnqtwr.fsf@xps.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
Dag-Erling Smørgrav wrote: > freebsd-security@auscert.org.au writes: >>Can this be achieved within the regular system build process, or must I >>roll my own? > > You need to change src/crypto/openssh/config.h so it says > > /* #undef PAM */ > #define SKEY 1 > #define OPIE 1 > > instead of > > #define PAM 1 > /* #undef SKEY */ > /* #undef OPIE */ > > then rebuild world. Aha! I bet ports/security/fwtk would be much happier if SKEY was around. Were these enabled some time ago and since disabled...? -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?43015869.6020307>