On 2025-09-02, Robert Alessi <alessi@robertalessi.net> wrote:
>> this is a shortcoming of login_yubikey(8) - other yk otp-based login
>> methods (e.g. using radius to auth at a central location that checks
>> coubters) are possible.
>
> I surmise the same shortcoming also applies to S/Key?
I would expect separate OTP lists per machine for S/Key, otherwise think
I would the user will get rather confused as to which OTP to use.
Less likely to be the case for yubikey OTPs where you just need any
valid OTP with a higher sequence than that ussd by the last successful
login.
--
Please keep replies on the mailing list.
No comments:
Post a Comment