32 messages in org.freebsd.freebsd-currentRe: OPIE auth broken too (was Re: Pas...| From | Sent On | Attachments |
|---|---|---|
| Andrey A. Chernov | Jul 2, 2002 4:45 am | |
| Dag-Erling Smorgrav | Jul 2, 2002 5:01 am | |
| Andrey A. Chernov | Jul 9, 2002 5:49 am | |
| Andrey A. Chernov | Jul 9, 2002 6:07 am | |
| Dag-Erling Smorgrav | Jul 9, 2002 6:15 am | |
| Andrey A. Chernov | Jul 9, 2002 6:35 am | |
| Dag-Erling Smorgrav | Jul 9, 2002 6:58 am | |
| Andrey A. Chernov | Jul 9, 2002 9:30 am | |
| Andrey A. Chernov | Jul 9, 2002 9:40 am | |
| Gregory Neil Shapiro | Jul 9, 2002 9:46 am | |
| Andrey A. Chernov | Jul 9, 2002 9:51 am | |
| Gregory Neil Shapiro | Jul 9, 2002 9:58 am | |
| Dag-Erling Smorgrav | Jul 9, 2002 2:33 pm | |
| Dag-Erling Smorgrav | Jul 9, 2002 2:42 pm | |
| Andrey A. Chernov | Jul 9, 2002 4:25 pm | |
| David Schultz | Jul 9, 2002 4:32 pm | |
| Andrey A. Chernov | Jul 9, 2002 4:33 pm | |
| Dag-Erling Smorgrav | Jul 10, 2002 3:12 am | |
| Andrey A. Chernov | Jul 10, 2002 4:50 am | |
| Dag-Erling Smorgrav | Jul 10, 2002 5:17 am | |
| Andrey A. Chernov | Jul 10, 2002 5:23 am | |
| Dag-Erling Smorgrav | Jul 10, 2002 6:02 am | |
| Andrey A. Chernov | Jul 10, 2002 6:27 am | |
| Dag-Erling Smorgrav | Jul 10, 2002 6:36 am | |
| Andrey A. Chernov | Jul 10, 2002 7:10 am | |
| Andrey A. Chernov | Jul 10, 2002 7:32 am | |
| Andrey A. Chernov | Jul 10, 2002 8:23 am | |
| Gregory Neil Shapiro | Jul 10, 2002 9:37 am | |
| Andrey A. Chernov | Jul 10, 2002 10:32 am | |
| Dag-Erling Smorgrav | Jul 10, 2002 10:54 am | |
| Terry Lambert | Jul 10, 2002 1:06 pm | |
| Andrey A. Chernov | Jul 10, 2002 5:15 pm |
| Subject: | Re: OPIE auth broken too (was Re: PasswordAuthentication not works in sshd) | |
|---|---|---|
| From: | Terry Lambert (tlam...@mindspring.com) | |
| Date: | Jul 10, 2002 1:06:08 pm | |
| List: | org.freebsd.freebsd-current | |
"Andrey A. Chernov" wrote:
On Wed, Jul 10, 2002 at 14:17:51 +0200, Dag-Erling Smorgrav wrote:
"Andrey A. Chernov" <ac...@nagual.pp.ru> writes:
Why what? Sysadmin allows PasswordAuthentication only.
Why?
Because he choose to not trust hosts keys which can be stolen especially when not password-protected. Because it is documented way to configure sshd. This scenario is very equivalent to normal Unix login procedure excepting that passwords are not transferred as cleartext over the net. It is most easy way for admin to teach end-users to use ssh without (mis)dealing with hosts keys.
I think he meant "Why doesn't it respect the "secure" flag on pty's in /etc/ttys, like all other conforming UNIX programs do?".
-- Terry
To Unsubscribe: send mail to majo...@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message