Hello,
We would like to install an one-time password mechanism, with only one
authentication server for all our platforms : Sun, SGI and Alpha-OSF/1.
The idea is to modify somehow all the security-sensitive commands such that
they will ask the authentication server (using a client-server mechanism)
to check the password for them.
We don't have, of course, the OSF sources of login, su, rshd, ..etc , but
we could use some other sources for these commands.
Unfortunately, trying to use different sources other than the the original
OSF ones, especially for the "login" command, can introduce some security holes.
And here comes my QUESTION:
Is there any way in OSF to hook a pre-login procedure ( which will eventually
verify the password) and then execute the original OSF login procedure
with no password verification.
Thanks in advance for any help,
Juliana.
-----
Juliana Solomon juli_at_cc.huji.ac.il (MIME welcomed)
Computation Center voice: +972-2-6584403
The Hebrew University of Jerusalem fax: +972-2-6527349
Jerusalem 91904, ISRAEL
Received on Tue Aug 01 1995 - 11:44:43 NZST