Hi,
I just set up libpam-opie and it works quite well from the console as
well as with ssh. Unfortunatly it does not show wich OTPasswd it expects
with ssh login but this is another story.
In order to get it working I had to change /etc/pam.d/ssh from:
| auth required pam_nologin.so
| auth required pam_unix.so
| auth required pam_env.so # [1]
to
| auth required pam_nologin.so
| auth required pam_env.so # [1]
| auth sufficient pam_unix.so
| auth sufficient pam_opie.so
| auth required pam_deny.so
Note that I moved pam_env up before unix and opie so that it always is
required. I also added pam_deny as shown in README.Debian as the final
catch rule and set unix and opie to sufficient.
Did I just open a big root shell on port 22 saying in big flashing yellow
letters 'USE ME', or is everything ok? Any suggestions what I might/should
change?
TIA
yours,
peter
--
PGP encrypted messages preferred.
http://www.cosy.sbg.ac.at/~ppalfrad/
[please CC me on lists]
PGP signature