Akatswiri ochokera ku Qualys Labs apeza zovuta zingapo zachitetezo zokhudzana ndi kuthekera konyenga mapulogalamu omwe ali ndi njira zowunika mawu achinsinsi omwe amagwiritsidwa ntchito mu BSD (analogous to PAM). Chinyengo ndikudutsa dzina lolowera "-challenge" kapena "-schallenge:passwd", lomwe limatanthauziridwa osati ngati dzina lolowera, koma ngati njira. Pambuyo pake, dongosololi limavomereza mawu achinsinsi. Osatetezeka, i.e. Zotsatira zake, mwayi wosaloledwa umaloledwa ndi mautumiki a smtpd, ldapd, radiusd. Utumiki wa sshd sungagwiritsidwe ntchito, popeza sshd ndiye amazindikira kuti wogwiritsa "-challenge" kulibe. Pulogalamu ya su imawonongeka ikayesa kuigwiritsa ntchito, chifukwa imayesanso kupeza uid ya wogwiritsa ntchito kulibe.
Zowopsa zosiyanasiyana zidawululidwanso mu xlock, mwa chilolezo kudzera pa S/Key ndi Yubikey, komanso mu su, osakhudzana ndi kufotokozera wogwiritsa ntchito "-challenge". Chiwopsezo mu xlock chimalola wogwiritsa ntchito wamba kuti awonjezere mwayi ku gulu la auth. Ndizotheka kukulitsa mwayi kuchokera ku gulu la auth kupita kwa wogwiritsa ntchito mizu pogwiritsa ntchito njira zolakwika za S/Key ndi njira zololeza Yubikey, koma izi sizigwira ntchito mukusintha kwa OpenBSD kokhazikika chifukwa chilolezo cha S/Key ndi Yubikey ndizolephereka. Potsirizira pake, chiwopsezo mu su chimalola wogwiritsa ntchito kuonjezera malire pazinthu zadongosolo, monga chiwerengero cha omasulira mafayilo otseguka.
Pakadali pano, zofooka zakhazikitsidwa, zosintha zachitetezo zikupezeka kudzera munjira yokhazikika ya syspatch(8).
Source: linux.org.ru