It's not possible to allow non-OPIE logins only from trusted
networks
Dag-Erling Smørgrav
des at des.no
Fri Mar 11 10:03:17 UTC 2011
Miguel Lopes Santos Ramos <mbox at miguel.ramos.name> writes:
> 1. The user does not have OPIE enabled and the remote host is listed as
> a trusted host in /etc/opieaccess.
> 2. The user has OPIE enabled and the remote host is listed as a trusted
> host in /etc/opieaccess, and the user does not have a file
> named .opiealways in his home directory.
>
> Or at least this should be an option for pam_opieaccess.
Seems like a good idea, at first blush (provided it's optional). Do you
have a patch?
DES
--
Dag-Erling Smørgrav - des at des.no
More information about the freebsd-security
mailing list