Re: Opie and protecting passphrases
From: Andrey A. Chernov (ache@nagual.pp.ru)
Date: 08/06/01
- Next message: Christian Weisgerber: "Tracing writes?"
- Previous message: Mark Woodson: "Re: translation of the spam"
- In reply to: Andrey A. Chernov: "Re: Opie and protecting passphrases"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 6 Aug 2001 18:30:59 +0400 From: "Andrey A. Chernov" <ache@nagual.pp.ru> To: Bill Fenner <fenner@research.att.com>
More thoughts from another thread:
Restricting opiepasswd _weakens_ security, because force user to ask admin
to change password each time (f.e. when OPIE countdown goes to 0 or in
case secret phrase becomes accidentally known). Any type of admin asking
(by phone, by email) produce reaction time lag, in that period intruder
can use secret phrase or user don't have its access. Email asking
additionly transmit passwords over insecure channel.
-- Andrey A. Chernov http://ache.pp.ru/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
- Next message: Christian Weisgerber: "Tracing writes?"
- Previous message: Mark Woodson: "Re: translation of the spam"
- In reply to: Andrey A. Chernov: "Re: Opie and protecting passphrases"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
