Stewart Stremler wrote: > The thing with one-time passwords is you need a challenge-response > system choose the correct one-time password (in theory)... you _ought_ > to be able to set up a user-account that prompts for OTP, and another > that desires the "normal" password.
Why would a challenge response system be needed? Just accept the OTP at the top of the list and then once that OTP has been used move to the next password and I mark it off my piece of paper. > PAM has caused me more grief than just about any other "improvement" to > *NIX I can think of (excepting, perhaps, NIS). And yet, in theory, it's > a wonderful idea; the implementation may require some debugging as you > strive to set up the rules correctly. Yeah, I have heard a lot of mixed feelings about PAM. This is one reason I have never delved into it. -- Tracy R Reed http://copilotconsulting.com 1-877-MY-COPILOT -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
