It's not possible to allow non-OPIE logins only from trusted
networks
RW
rwmaillists at googlemail.com
Tue Mar 15 13:23:05 UTC 2011
On Tue, 15 Mar 2011 11:35:06 +0100
Dag-Erling Smørgrav <des at des.no> wrote:
> RW <rwmaillists at googlemail.com> writes:
> > IIRC there is/was a weakness in FreeBSD's OPIE implementation in
> > that it's susceptible to rainbow table attacks - I think part of
> > the hash is discarded.
>
> Can you provide more details?
http://lists.freebsd.org/pipermail/freebsd-security/2009-February/005114.html
More information about the freebsd-security
mailing list