Damien Miller djm at
Tue Mar 20 12:25:40 EST 2001

On Mon, 19 Mar 2001, Dan Kaminsky wrote:

> As a security administrator, I cannot argue that SecureID should be
> suppressed simply because it's proprietary--it clearly improves security in
> certain domains.

Integrating SecureID is additional complexity which has to be maintained,
i.e time which could otherwise be spent fixing bugs or adding new features
that everyone can use.

> So, Damien--would you have any objection to a SecureID interface that simply
> spoke the correct material on the wire to the central authentication server,
> but never linked in proprietary APIs?

It if lives in contrib/ I don't mind what it links.


| Damien Miller <djm at> \ ``E-mail attachments are the poor man's
|          /   distributed filesystem'' - Dan Geer

More information about the openssh-unix-dev mailing list