It's not possible to allow non-OPIE logins only from trusted
networks
Miguel Lopes Santos Ramos
mbox at miguel.ramos.name
Fri Mar 11 10:17:56 UTC 2011
Sex, 2011-03-11 às 10:46 +0100, Dag-Erling Smørgrav escreveu:
> Miguel Lopes Santos Ramos <mbox at miguel.ramos.name> writes:
> > 1. The user does not have OPIE enabled and the remote host is listed as
> > a trusted host in /etc/opieaccess.
> > 2. The user has OPIE enabled and the remote host is listed as a trusted
> > host in /etc/opieaccess, and the user does not have a file
> > named .opiealways in his home directory.
> >
> > Or at least this should be an option for pam_opieaccess.
>
> Seems like a good idea, at first blush (provided it's optional). Do you
> have a patch?
>
> DES
I will make a scratch. I'll submit it to the list on the weekend.
--
Miguel Ramos <mbox at miguel.ramos.name>
PGP A006A14C
More information about the freebsd-security
mailing list