On 19. 5. 25 19:28, Greg Stein wrote:
For svn+ssh, since we control both ends of that conversation, it would be possible to add an additional challenge/response for a 2FA (TOTP?) mechanism. I find this rather dubious, however, as SSH access already implies a very intimate level of access and may already have some level of 2FA incorporated (eg. ASF Infra has 2FA applied to some SSH access).
Just an aside: that's probably done with the pam_otp plugin, SSH knows how to wrap itself around that.
-- Brane
