Mornin', On Thu, Dec 17, 2015 at 04:22:37PM -0500, Selva Nair wrote: > While reviewing the series of patches from Wayne Davison, I've come to > realize that, until the recent changes in get_user_pass_cr, the use of > challenge-response was incompatible with reading auth-user-pass from a > file. As this goes back to early 2.3-alpha, it may be by design, but not > documented as such?
I think it's more "by oversight" - personally, I've never been even aware
that challenge-response *exists* until about two years ago (well in the
2.3 series) - and it seemed to be mainly used together with OpenVPN AS,
read "management interface based".
That said...
> (b) prompt for the response from console in both dynamic and static cases
I think this would follow the "principle of least surprise", so I'd go
for (b).
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
