[securityguide] add recommandation
Fabian Affolter
fab at fedoraproject.org
Wed Oct 8 09:52:12 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/06/2014 04:34 PM, Eric H. Christensen wrote:
> Maybe someone else would like to comment here...
>
> On Sat, Oct 04, 2014 at 08:07:56AM +0000, Fabian Affolter wrote:
>> commit a7b06bdc34a327d4fd01308cabc2ff4a2b0828c2 Author: Fabian
>> Affolter <fab at fedoraproject.org> Date: Sat Oct 4 10:07:34 2014
>> +0200
>
>> - Install <package>pam_yubico</package> + Install
>> <package>pam_yubico</package> as root.
>
> "as root" seems redundant. One can *only* install the package as
> root so "as root" is already a given.
Well, at various places in this guide it's mentioned that the
installation has to be done as root. I followed that line.
>> - To simple use the yubikey token without your password
>> remove the first line from the step above and replace it with the
>> second. + To simple use the yubikey token without your
>> password remove the first line from the step above and replace it
>> with the second. It's not recommanded to use the yubikey without
>> a password.
>
> Why is it not recommended (and always check your spelling) to use a
> Yubikey without a password? If we're going to add a sentence in
> like this it should either be an admon or we need to talk about it
> more. In this case I think we should talk about it more.
I will rephrase that.
Thanks for our input.
Kind regards,
Fabian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
iEYEARECAAYFAlQ1CUwACgkQ4jzS3TakOX+zWwCaAsy/Nhy8p9GtwMit0hDAHxi2
LZcAnRxPu9Na3H6MUtqkUk64Ro0nUwLh
=mjc9
-----END PGP SIGNATURE-----
More information about the docs
mailing list