From mboxrd@z Thu Jan 1 00:00:00 1970 Message-ID: <8a51db76940c1a7240e434771226410a@quanstro.net> To: 9fans@9fans.net From: erik quanstrom Date: Mon, 26 Jan 2009 12:20:48 -0500 In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit Subject: Re: [9fans] p9 file server (npfs) w/ authentication from Topicbox-Message-UUID: 88fbd12c-ead4-11e9-9d60-3106f5b1d025 > it's a bit awkward doing inferno auth with factotum, as you > have to manually manipulate the keys generated by the login(6) > process. it'd be nice if there was some way for a factotum > protocol to generate a key that stayed in long term storage (i.e. in secstore) > but currently, i don't think there's a way to do it, other > than manually. even a manual process would be cleaner and likely more secure than the current setup: ; echo export>/mnt/factotum/ctl ; secstore password: ***** editing one's secstore factotum file is something that's easy to get wrong and easy to do insecurely. e.g. giving the wrong arguments to ramfs. - erik