[Bug 1393] New: patch modifies gnome-ssh-askpass to optionally use one-time password

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Sat Nov 24 14:45:41 EST 2007


https://bugzilla.mindrot.org/show_bug.cgi?id=1393

           Summary: patch modifies gnome-ssh-askpass to optionally use one-
                    time password
    Classification: Unclassified
           Product: Portable OpenSSH
           Version: 4.7p1
          Platform: All
               URL: http://www.swcp.com/~pgsery
        OS/Version: Linux
            Status: NEW
          Keywords: patch
          Severity: enhancement
          Priority: P2
         Component: Miscellaneous
        AssignedTo: bitbucket at mindrot.org
        ReportedBy: pgsery at swcp.com


Created an attachment (id=1383)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=1383)
modifies gnome-ssh-askpass2.c to use one-time password

Patch modifies gnome-ssh-askpass to optionally generate a one-time
password and transmit it via an out-of-band communication channel. If
you can read the password and enter it back into the gnome-ssh-askpass
dialog, ssh-agent is allowed to continue with the authentication
process. 

There are two ways to use the modified gnome-ssh-askpass. The first
method incrementally increases the security provided by the
ssh-agent/gnome-ssh-askpass combination. The second allows you to
create two fully separated authentication factors - the private key and
one-time password - without using a specialized hardware token.

Please see the README (www.swcp.com/~pgsery) for a detailed explanation
and examples.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list