[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: OTP (opie) and ssh

I can see the point,
because a would be intruder could look over the shoulder of an authorised
user, or someone with more priveleges than himself, and watch his password
being entered. Then it doesnt matter whether the session is encrypted
because the intruder knows the password.

the more security the better, as far as i am concerned.

-thorsten sideb0ard
network/systems engineer

On Mon, 18 Sep 2000, Carlos Carvalho wrote:

> Peter Palfrader (ppalfrad@cosy.sbg.ac.at) wrote on 19 September 2000 00:04:
>  >I just set up libpam-opie and it works quite well from the console as
>  >well as with ssh. Unfortunatly it does not show wich OTPasswd it expects
>  >with ssh login but this is another story.
> I don't see the point of using ssh with otp. They are different
> methods to achieve the same goal, and are redundant.
> --  
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to: