Bug 23203

Summary: opie doesn't know that ssh connections are secure and you can't tell it
Product: Base System Reporter: Bill Fenner <fenner>
Component: binAssignee: freebsd-bugs (Nobody) <bugs>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Unspecified   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Bill Fenner 2000-12-01 06:30:02 UTC 
	
The opie commands opiekey (otp-md4 otp-md5) and opiepasswd refuse
to accept a secret pass phrase if they think they're not being run
from a secure terminal.  There is a command-line option to override
this check, but it is not compiled in by default on FreeBSD.  This
is one of these stupid well-intentioned things that just ends up
getting in the way.  A desperate user will avoid this whole situation
by being even less secure by using e.g.
"echo mypassphrase | env DISPLAY=:0 otp-md5 ..."

Fix: Stupid, less secure workaround:
echo "mypassphrase" | env DISPLAY=:0 otp-md5 seq seed

Fix: enable the -f flag for opiekey and opiepasswd by adding the
proper defines to the Makefiles for opiekey and opiepasswd, and
fixing the buggy opiekey.
How-To-Repeat: 
	
ssh freefall.freebsd.org
otp-md5 1 nanny
Comment 1 Andrey A. Chernov freebsd_committer freebsd_triage 2001-08-13 20:44:37 UTC 
State Changed
From-To: open->analyzed

All fixed in -current
Comment 2 ashp freebsd_committer freebsd_triage 2002-01-16 22:41:18 UTC 
State Changed
From-To: analyzed->closed

If it's 'all fixed in -current', then it should be closed! :)
Comment 3 ashp freebsd_committer freebsd_triage 2002-01-16 23:13:32 UTC 
State Changed
From-To: closed->open

Eek, misclosed.  Problem only fixed in CURRENT, not in STABLE.  Apologies.
Comment 4 ashp freebsd_committer freebsd_triage 2002-01-16 23:57:04 UTC 
State Changed
From-To: open->analyzed

Oh the pain.  Thanks Andrey.
Comment 5 Andrey A. Chernov freebsd_committer freebsd_triage 2002-06-08 21:12:17 UTC 
State Changed
From-To: analyzed->patched

This PR state must be "patched" according to guideline
Comment 6 Jonathan Chen freebsd_committer freebsd_triage 2002-08-13 12:57:33 UTC 
State Changed
From-To: patched->closed

changed in MFC ~4 weeks ago