Hello:
On the subject of Opie, I am a big opie fan as well. It works well.
Users of opie should be aware, however, that at least on some
platforms it (opie 2.31) does not properly protect r-based services
like rsh and rlogin. But as one of the part authors of
OPIE said in an email conversation with me,
"I never, ever, ever run rlogin on any of my machines,"
amd perhaps most security-minded individuals agree, so this may not
be a big issue. But I thought it certainly warrants mention.
joshr
At 06:33 PM 6/27/97, <massimo .
cotrozzi @
ArthurAndersen .
com> wrote:
>Use OPIE on Linux 2.0.30 with no problems at all
>
>Original message follows:
>
>On Jun 20, Prahl V. E. (Von) wrote:
>> Anybody out there have any experience with OPIE? I have a
>> vendor that wants to come into our network. I'd like to find
>> a software package for one time passwords. The vendor is not
>> to keen on using Snk keys, and I'm not to keen on trying to
>> keep up with a bunh of Snk keys myself. Any help will be
>> greatly apprieciated.
>[ Long essay here that starts with: "Beware that OTPs protect
>the initial connection only..." ] ;-)
>I've used Opie on Solaris, and the calculator on FreeBSD and Windows.
>Works fine.
>Ng Pheng Siong <ngps @
pacific .
net .
sg>
>DES is kaput. Long live DES.
References:
-
Re: OPIE
From: "massimo.cotrozzi" <massimo .
cotrozzi @
ArthurAndersen .
com>
|
|
