SecurID

Damien Miller djm at mindrot.org
Tue Mar 20 12:25:40 EST 2001


On Mon, 19 Mar 2001, Dan Kaminsky wrote:

> As a security administrator, I cannot argue that SecureID should be
> suppressed simply because it's proprietary--it clearly improves security in
> certain domains.

Integrating SecureID is additional complexity which has to be maintained,
i.e time which could otherwise be spent fixing bugs or adding new features
that everyone can use.

> So, Damien--would you have any objection to a SecureID interface that simply
> spoke the correct material on the wire to the central authentication server,
> but never linked in proprietary APIs?

It if lives in contrib/ I don't mind what it links.

-d

-- 
| Damien Miller <djm at mindrot.org> \ ``E-mail attachments are the poor man's
| http://www.mindrot.org          /   distributed filesystem'' - Dan Geer






More information about the openssh-unix-dev mailing list