Re: Debian Hardened project status.

To: debian-security@lists.debian.org, debian-project@lists.debian.org
Subject: Re: Debian Hardened project status.
From: Michael Stone <mstone@debian.org>
Date: Sun, 26 Sep 2004 09:35:46 -0400
Message-id: <[🔎] 20040926133546.GT4941@mathom.us>
Mail-followup-to: debian-security@lists.debian.org, debian-project@lists.debian.org
In-reply-to: <[🔎] 200409262202.03304.russell@coker.com.au>
References: <[🔎] 1096147357.27469.18.camel@localhost> <[🔎] 200409262202.03304.russell@coker.com.au>

On Sun, Sep 26, 2004 at 10:02:03PM +1000, Russell Coker wrote:

On Sun, 26 Sep 2004 07:22, Lorenzo Hernandez Garcia-Hierro <lorenzo@gnu.org>wrote:
- openssh (i'm working on the patches that bring SecurID Token use
features, and others from independent hackers)
Most of the features you list are things that are difficult to get intoDebian/main. But token based security for openssh is something that seemslike it could go in without too much pain. Have you talked to Matthew Vernonabout this?


This is something that should be handled at the pam level and shouldn't
require special handling from ssh. (Assuming a good ssh pam
implementation.) The last time I looked at the securid pam module from
rsa it didn't work with our ssh, but that's because they made it
dependent on bugs in ssh pam handling from older versions of ssh.
<shrug>

Mike Stone

Reply to:

Follow-Ups:
- Re: Debian Hardened project status.
  - From: Stephen Frost <sfrost@snowman.net>

References:
- Debian Hardened project status.
  - From: Lorenzo Hernandez Garcia-Hierro <lorenzo@gnu.org>
- Re: Debian Hardened project status.
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: Re: Debian Hardened project status.
Next by Date: Re: Debian Hardened project status.
Previous by thread: Re: Debian Hardened project status.
Next by thread: Re: Debian Hardened project status.
Index(es):
- Date
- Thread