Re: Source Code One Line Change [patch] and Copyright holder

To: debian-devel@lists.debian.org
Subject: Re: Source Code One Line Change [patch] and Copyright holder
From: "Nanakos V. Chrysostomos" <nanakos@wired-net.gr>
Date: Fri, 26 Aug 2011 17:06:34 +0300 (EEST)
Message-id: <[🔎] 64298.194.177.215.120.1314367594.squirrel@www.wired-net.gr>
Reply-to: nanakos@wired-net.gr
In-reply-to: <[🔎] 87r548qnp0.fsf@qurzaw.varnish-software.com>
References: <[🔎] 61795.194.177.215.120.1314352205.squirrel@www.wired-net.gr> <[🔎] 87zkiwqvmx.fsf@qurzaw.varnish-software.com> <[🔎] 39584.194.177.215.120.1314359559.squirrel@www.wired-net.gr> <[🔎] 87vctkqrhr.fsf@qurzaw.varnish-software.com> <[🔎] 24257.194.177.215.120.1314362787.squirrel@www.wired-net.gr> <[🔎] 87r548qnp0.fsf@qurzaw.varnish-software.com>

This is the default and proposed installation in the README file. Many many people claim until now (I have received plenty of email's!!!) that they use this installation and could never imagine that there was such a bug for more than a year now. Another guy reported that he has installed pam_yubico module to more than 130 CentOS server's and you could easily imagine what the consequences will be if someone has discovered the bug and solely used it for his own profit.

Cheers,
Chris.

> ]] "Nanakos V. Chrysostomos"
>
> | Authentication succeeded when no password
> | was given, unless use_first_pass was being used.
> | This is fatal if pam_yubico is considered 'sufficient' in the PAM
> | configuration.
>
> It also requires you to use the client mode (which is the default) and not
> the challenge
> response mode, which explains why I couldn't reproduce your issue.
>
> --
> Tollef Fog Heen
> UNIX is user friendly, it's just picky about who its friends are
>
>
> --
> To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
> Archive:
> http://lists.debian.org/[🔎] 87r548qnp0.fsf@qurzaw.varnish-software.com
>

Reply to:

References:
- Source Code One Line Change [patch] and Copyright holder
  - From: "Nanakos V. Chrysostomos" <nanakos@wired-net.gr>
- Re: Source Code One Line Change [patch] and Copyright holder
  - From: Tollef Fog Heen <tfheen@err.no>
- Re: Source Code One Line Change [patch] and Copyright holder
  - From: "Nanakos V. Chrysostomos" <nanakos@wired-net.gr>
- Re: Source Code One Line Change [patch] and Copyright holder
  - From: Tollef Fog Heen <tfheen@err.no>
- Re: Source Code One Line Change [patch] and Copyright holder
  - From: "Nanakos V. Chrysostomos" <nanakos@wired-net.gr>
- Re: Source Code One Line Change [patch] and Copyright holder
  - From: Tollef Fog Heen <tfheen@err.no>

Prev by Date: Re: Source Code One Line Change [patch] and Copyright holder
Next by Date: Re: Source Code One Line Change [patch] and Copyright holder
Previous by thread: Re: Source Code One Line Change [patch] and Copyright holder
Next by thread: Re: Source Code One Line Change [patch] and Copyright holder
Index(es):
- Date
- Thread