First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 11478
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Tavis Ormandy (RETIRED) <taviso@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Jeb Campbell <jebc@c4solutions.net>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:

Filename Description Type Creator Created Size Actions
skey-1.1.5.ebuild skey-1.1.5.ebuild text/plain Jeb Campbell 2002-12-02 04:38 0000 2.03 KB Details
skeyprint skeyprint text/plain Jeb Campbell 2002-12-02 04:40 0000 24.42 KB Details
winkey winkey text/plain Jeb Campbell 2002-12-02 04:41 0000 453 bytes Details
digest-skey-1.1.5 digest-skey-1.1.5 text/plain Jeb Campbell 2002-12-02 04:42 0000 61 bytes Details
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 11478 depends on: Show dependency tree
Bug 11478 blocks:
Votes: 0    Show votes for this bug    Vote for this bug

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2002-12-02 04:37 0000 
Single key (s/key) generates single use password lists for logging on from
unsecure networks.  Openssh supports it, but not stock gentoo (need ./configure
--with-skey) and this ebuild.

The *BSDs use it, and it might be a nice addition to Gentoo.

Also included are some utilities from logdaemon-5.9 (an alternate skey library,
but openssh does not support it).
skeyprint -- prints the next 100 skey passwords on a credit card size
winkey -- opens a term to make sure you aren't remote (assuming no X11 forwarding)

------- Comment #1 From Jeb Campbell 2002-12-02 04:38:46 0000 ------- 
Created an attachment (id=6132) [details]
skey-1.1.5.ebuild

------- Comment #2 From Jeb Campbell 2002-12-02 04:40:22 0000 ------- 
Created an attachment (id=6133) [details]
skeyprint

put in files directory
prints out skey list credit card size

------- Comment #3 From Jeb Campbell 2002-12-02 04:41:43 0000 ------- 
Created an attachment (id=6134) [details]
winkey

put in files directory
opens term for skey dialog to prevent remote execution
not required, but nice

------- Comment #4 From Jeb Campbell 2002-12-02 04:42:09 0000 ------- 
Created an attachment (id=6135) [details]
digest-skey-1.1.5

------- Comment #5 From J Robert Ray 2003-06-26 00:13:19 0000 ------- 
Reassigning bugs due to lack of time.

------- Comment #6 From Tavis Ormandy (RETIRED) 2003-09-04 09:30:00 0000 ------- 
Assigning to me...

------- Comment #7 From Tavis Ormandy (RETIRED) 2003-09-05 05:49:17 0000 ------- 
Thats Really cool.

I'm surprised this enhancement bug has been open since last year and nobody has done anything about it. I'm going to try and get something committed later tonight, ive made some modifications to your ebuild, and im going to add a local USE flag to openssh `skey` to enable S/Key authentication.

Dont hold your breath about it getting into stable any time soon though!, ive got no problems making modifications to ~arch testing, but im going to have to convince a few people its a good idea, and check they have no problem with it for it to survive into stable (and of course, making sure there are no bug reports on such a critical package as openssh).

I'll post an update when its been committed.

------- Comment #8 From Tavis Ormandy (RETIRED) 2003-09-05 08:40:42 0000 ------- 
app-admin/otpcalc-0.96
app-admin/skey-1.1.5
net-misc/openssh-3.6.1_p2-r3

have all been committed, the openssh ebuild now has support for an `skey` USE flag, when set it will depend on app-admin/skey.

I havnt added the skeyprint and winkey files yet, i'll wait for some feedback first.

The ChnageLog for skey reads

*skey-1.1.5 (05 Sep 2003)

  05 Sep 2003; Tavis Ormandy <taviso@gentoo.org> skey-1.1.5.ebuild:
  Initial import, Thanks to Jeb Campbell <jebc@c4solutions.net> for 
  submitting the ebuild in #11478

RESOLVED->TEST-REQUEST.

------- Comment #9 From Tavis Ormandy (RETIRED) 2003-09-16 15:02:42 0000 ------- 
net-misc/openssh-3.7_p1 was marked stable today in response to a security
issue, it contains optional s/key support and app-admin/skey-1.1.5 was also
marked stable .

There has been some positive feedback from some developers and users.

Thanks!

Closing bug.

------- Comment #10 From Tavis Ormandy (RETIRED) 2003-10-31 11:02:39 0000 ------- 
This should be closed, Fixing status...
First Last Prev Next    No search results available      Search page      Enter new bug