Add OPIE deprecation notice
AbandonedPublic
Actions

Authored by emaste on Sep 11 2018, 3:33 PM.

Tags

None

Referenced Files

	Unknown Object (File)
	Sun, Oct 12, 7:19 AM

	Unknown Object (File)
	Fri, Oct 10, 4:24 AM

	Unknown Object (File)
	Fri, Oct 10, 4:24 AM

	Unknown Object (File)
	Thu, Oct 9, 11:06 PM

	Unknown Object (File)
	Thu, Oct 9, 12:28 PM

	Unknown Object (File)
	Wed, Sep 17, 11:38 AM

	Unknown Object (File)
	Mon, Sep 15, 2:15 AM

	Unknown Object (File)
	Aug 26 2025, 6:13 AM

View All 53 Files

Subscribers

delphij

Details

Reviewers

des
delphij

Group Reviewers

secteam

Summary

OPIE's security properties are not appropriate for today's environment and ought not to be used. Add a deprecation notice to the man page for 12.0.

Rather than trying to update OPIE our effort would be be better spent on integration of things like U2F.

Diff Detail

Lint

Lint Skipped

Unit

Tests Skipped

Event Timeline

See PR 94978

I think you might want to bump the date (currently read as "January 10, 1995") when committing but it looks otherwise fine to me.

This revision is now accepted and ready to land.Sep 11 2018, 4:48 PM

You should add the same disclaimer to opieinfo(1), opiekey(1), opiepasswd(1), pam_opie(8), pam_opieaccess(8), opieaccess(5), and opiekeys(5). Note that some of those (the PAM ones, at least) are in mdoc format rather than man.

contrib/opie/opie.4
26	Bump

This revision now requires changes to proceed.Sep 12 2018, 2:25 PM

Ping?

emaste added inline comments.Sep 13 2023, 10:47 AM

contrib/opie/opie.4
31	I'm not sure how best to express this, open to suggestions for better phrasing.

@des handled this in D36593

Revision Contents
Changeset List

Path

Size

contrib/

opie/

opie.4

6 lines

Diff 47913

View Options

Add OPIE deprecation noticeAbandonedPublicActions