Intrusion Update

[Jim Meyering]

Mike McGrath wrote:
> On Mon, 30 Mar 2009, Damian Myerscough wrote:
>> What about the use of S/Key (one-time passwords) I think it is possible to
>> deploy SSH with S/Key authentication. I haven't look into it that much but it
>> could be a possible solution?
>
> If someone had my username, password, and ssh key.  How would that prevent
> them from getting a otp?

To do that, they'd need to know your otp passphrase.