> ... and I suggest you mark it
> as unsafe for use in any exposed network environment. The unsafeness of
> relying on Coda tokens for authentication to a service other than Coda
> (i.e., the local machine) has been discussed previously on the mailing
> list ..
I completely a
This is a very bad idea. Even assuming Coda had sufficient crypto to
protect your user keying material, the ability to retrieve a Coda token
demonstrates nothing. Recall that with kerberos PAM (which works on
similar shared secret principles), once you have retrieved a Kerberos
ticket, you stil
Hi there!
I hereby announce the first public release of a
Pam Coda Module (2nd alpha Version),
available at
http://coda.uni-hd.de
pam_coda.so is a PAM-Authentication Module, that passes the users password
to the Program clog. If clog sucessfully generates a token, this token is
left and pam_co
