#11828: Look into using one-time-passwords as secondary authentication method for baron -------------------------+---------------------------- Reporter: zooey | Owner: haiku-sysadmin Type: task | Status: new Priority: normal | Milestone: Component: Sys-Admin | Version: Resolution: | Keywords: Blocked By: | Blocking: Has a Patch: 0 | Platform: All -------------------------+---------------------------- Comment (by zooey): What do you think about this scheme: * on baron, vmdev and vmweb: * require OTP during login via ssh * do not require OTP for sudo * do not require OTP for su -l * on vmrep: * do not require OTP during login via ssh * require OTP for sudo * do not require OTP for su -l The difference in behaviour could be a bit awkward at first, but I think one gets used to it. I'm not sure about the security impact of this, so if anyone thinks this is a bad idea, please speak up. -- Ticket URL: <https://dev.haiku-os.org/ticket/11828#comment:23> Haiku <https://dev.haiku-os.org> Haiku - the operating system.