From owner-man-jp-reviewer@jp.freebsd.org  Mon Oct  4 02:20:35 1999
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id CAA79602;
	Mon, 4 Oct 1999 02:20:35 +0900 (JST)
	(envelope-from owner-man-jp-reviewer@jp.FreeBSD.org)
Received: from mail.yk.rim.or.jp (root@mail.yk.rim.or.jp [202.247.130.37])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with ESMTP id CAA79597
	for <man-jp-reviewer@jp.freebsd.org>; Mon, 4 Oct 1999 02:20:35 +0900 (JST)
	(envelope-from k-horik@yk.rim.or.jp)
Received: from localhost (ppp988.yk.rim.or.jp [202.247.185.239])
	by mail.yk.rim.or.jp (8.8.8/3.6W-RIMNET-98-06-09) with ESMTP id CAA25752;
	Mon, 4 Oct 1999 02:20:33 +0900 (JST)
To: man-jp-reviewer@jp.freebsd.org, ht5t-fry@asahi-net.or.jp
In-Reply-To: Your message of "Sat, 02 Oct 1999 01:04:31 +0900"
	<19991002010431T.tfuruya@galois.tf.or.jp>
References: <19991002010431T.tfuruya@galois.tf.or.jp>
X-Mailer: Mew version 1.93 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <19991004021957U.k-horik@yk.rim.or.jp>
Date: Mon, 04 Oct 1999 02:19:57 +0900
From: Kazuo Horikawa <k-horik@yk.rim.or.jp>
X-Dispatcher: imput version 980905(IM100)
Lines: 169
Reply-To: man-jp-reviewer@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+990727
X-Sequence: man-jp-reviewer 1610
Subject: [man-jp-reviewer 1610] Re: opie.4 =?ISO-2022-JP?B?GyRCPWkbKEI=?=
 =?ISO-2022-JP?B?GyRCOUYkRyQ5ISMbKEI=?= 
Errors-To: owner-man-jp-reviewer@jp.freebsd.org
Sender: owner-man-jp-reviewer@jp.freebsd.org
X-Originator: k-horik@yk.rim.or.jp

 $BKY@n$G$9!#(B

$B8EC+$5$s!'(B
> $B1Q8l$N86J8$H(B opie $B$N%i%$%V%i%j!<$H$KAj0c$,$"$C$?$N$G!"(B
> diff file $B$K$7$FE:IU$7$F$*$-$^$9!#(B
 send-pr $B$b$7$F$$$?$@$1$k$HM-Fq$$$G$9!#(B

 $B0J2<!"Lu$7$F$$$?$@$$$?J8$K$D$$$F!#(B

 $B8GM-L>;l$K$D$$$F!'(B
 o X/Open
   $B8D?ME*$K$O%(%C%/%9!&%*!<%W%s$d%(%C%/%9%*!<%W%s$H$$$&I=8=$O8+$?5-21(B
   $B$,$J$$$G$9!#!V(BX/Open$B!W$N$^$^$NJ}$,L5Fq$@$H;W$$$^$9!#(B
 o Novel Netware
   $B8D?ME*$K$O!V%N!<%Y%k!W$H$$$&I=8=$h$j$O!V%N%Y%k!W$NJ}$,0lHLE*$@$H;W(B
   $B$$$^$9$,!"!V(BNovell$B!W$H$$$&I=5-$NJ}$,$h$jB?$$$N$G$O$J$$$G$7$g$&$+!#(B
   NetWare $B$K$D$$$F$bF1MM$N0U8+$G$9!#(B
 o Berkley Standard Distribution $B$H(B Bellcore $B$K$D$$$F$b!"(B
   $B86J8%^%^$NJ}$,L5Fq$@$H;W$$$^$9$7!"$^$?$O86J8$rJ;5-$7$?J}$,NI$$$H(B
   $B;W$$$^$9!#(B
   
 $B$=$NB>$NI=8=$K$D$$$F!'(B
 o $B%5!<%P!<(B -> $B%5!<%P(B
 o $B%o%s!]%?%$%`!&%Q%9%o!<%I(B -> $B!V%o%s%?%$%`%Q%9%o!<%I!W(B
                               $B$^$?$O!V;H$$<N$F%Q%9%o!<%I!W(B
   $B%+%J=q$-$G$R$H$^$H$^$j$N$3$H$P$K!V!]!W$H!V!&!W$,F1;~EP>l$9$k$N$O(B
   $B$"$^$j8+3]$1$J$$$H;W$$$^$9!#(B
 o $B%j%W%l%$(B -> $B7+$jJV$7(B
   $B$NJ}$,8D?ME*$K$O$o$+$j$d$9$$$H;W$$$^$9!#(B
 o you $B$NLu8l$H$7$F$N!V$"$J$?!W$H!VFI<T!W$NI=8=$O!"$I$A$i$+$KE}0l$7$?(B
   $BJ}$,$h$$$+$b$7$l$^$;$s!#(B

$B8EC+$5$s!'(B
> .\" WORD: secret pass phrase	$B%Q%9!&%U%l!<%:(B
> .\" WORD: secret password	$B%Q%9%o!<%I(B(password:$B9g8@MU(B;JIS-08.06.05)
 $BC1$J$k(B password $B$H6hJL$7$F(B secret password $B$HI=8=$7$F$$$k$H$3$m$b$"$k(B
$B$+$H;W$$$^$9$N$G!"(Bsecret password $B$N$H$3$m$O!VHkL)$N%Q%9%o!<%I!W$J$I$H(B
$B$7$?J}$,NI$$$H;W$$$^$9!#(B


> OPIE$B$O%Y%k%3%"<R$N(BS/Key$B$NBh#1HG$NG[I[J*$rH/E8$5$;$?%Q%C%1!<%8$G$9!#(B
 derived $B$H$7$+=q$$$F$J$$$N$G!VH/E8$5$;$?!W$HI=8=$9$k$N$O$d$dDq93$,$"(B
$B$j$^$9(B ($BNc$($P(B subset $B$b(B derivative $B$N0l7ABV$@$H;W$&$N$G(B)$B!#(B
 $B86J8(B OPIE is a package derived from the Bellcore S/Key Version 1
distribution that helps to secure a system against replay attacks (see
below).

> OPIE$B$N0?$kItJ,$O!"(B
> UNIX$B$N%P!<%/%l%$!&%9%?%s%@!<%I!&%G%#%9%H%j%S%e!<%7%g%s5Z$S!"(B
> $B%Y%k%3%"<R$N(BS/Key$B$NBh(B1$BHG$NG[I[J*$rH/E8$5$;$?$b$N$G$9!#(B
 derived $B$K$D$$$FF1MM$G$9!#(B

> $BDL>o$J$i!"%f!<%6$K%Q%9%o!<%I$NF~NO$r5a$a$k$H$$$&$h$&$J>lLL$G$O!"(B
> $B%5!<%P$O%A%c%l%s%8$rI=<($7$^$9!#(B
 $B!VDL>o$J$i!W$,J8A4BN$r=$>~$7$F$$$k$h$&$K$b8+$($k$N$G!"(B
	$BDL>o$J$i%f!<%6$K%Q%9%o!<%I$NF~NO$r5a$a$k$H$$$&$h$&$J>lLL$G$O!"(B
$B$H!V!"!W$r:o=|$7$?J}$,$h$$$H;W$$$^$9!#(B


> .I $B%Q%9%o!<%I(B
     $BHkL)$N%Q%9%o!<%I(B
> $B%Q%9%o!<%I$ODL>o%f!<%6$,A*Dj$9$k$b$N$G!"%7%9%F%`$X%"%/%;%9$9$k0Y$K(B
  $BHkL)$N%Q%9%o!<%I(B
> $BI,MW$H$J$j$^$9!#Nc$($P!"(B"SEc1_rt"$B!#(B
> .\" $BCm(B: OPIE$B8GM-$N%Q%9%o!<%I$G$"$k(B"pass phrase"$B$b$"$k$N$GCm0U!*(B(By T.F.)

> .TP
> .I $B%A%c%l%s%8!JC/2?!K(B
> $B$3$l$O0lAH$N>pJs$G!"%f!<%6$rG'>Z$9$kI,MW$,$"$k>l9g$K%7%9%F%`$K$h$jI=<((B
> $B$5$l$^$9!#(B
> OPIE$B$G$O!"%A%c%l%s%8$r9=@.$9$kAH9g$;$O!"(B
> $B%O%C%7%e<1JL;R!"%7!<%1%s%9HV9f!"5Z$S%7!<%I(B($B<o(B)$B$N#39`L\$G$9!#(B
> $B$3$l$i$N>pJs$r(BOPIE$BEEBn%W%m%0%i%`$r5/F0$7$FE,@5$J%l%9%]%s%9$r@8@.$9$k0Y$K(B
> $BF~NO$9$kI,MW$,$"$j$^$9!#(B
 $B!V$3$l$i$N>pJs$r!AF~NO$9$k!W$,1s$$$N$G!"(B
	$BE,@5$J%l%9%]%s%9$r@8@.$9$k0Y$K$O!"(B
	OPIE $BEEBn%W%m%0%i%`$O$3$l$i$N>pJs$,I,MW$G$9!#(B
$B$J$I$H!"6a$E$1$?J}$,$h$$$H;W$$$^$9!#(B
 $B86J8$O(B This information is needed by the OPIE calculator to generate
a proper response.

> .TP
> .I $B%7!<%I!J<o!K(B
> $B$3$l$O%l%9%]%s%9$r7W;;$9$k0Y$K%Q%9%o!<%I$H%7!<%1%s%9HV9f$H$H$b$K(B
                                $BHkL)$N%Q%9%o!<%I$H(B
> $B;HMQ$5$l$k(B1$B8D$N>pJs$G$9!#(B
> $B$=$NL\E*$OF10l$N%Q%9%o!<%I$r!"(B
> $B%7!<%I$rJQ99$9$k$@$1$GJ#?t$N%A%c%l%s%8!&%l%9%]%s%97ONs$KBP$7$F(B
> $B;HMQ=PMh$k$h$&$K$7$?$j!"(B
> $B0[$J$k%7!<%I$r;H$&$3$H$GJ#?t$N%^%7%s$KBP$9$kG'>Z$K(B
> $B;HMQ=PMh$k$h$&$K$9$k$3$H$G$9!#(B

> .SH $B%j%W%l%$967b(B
> $B$"$J$?$,(B
> .IR telnet (1)
> $B$N$h$&$J%M%C%H%o!<%/DL?.%W%m%0%i%`$r;HMQ$7$F$$$k$H$-$d!"(B
> $B%3%s%T%e!<%?!&%7%9%F%`$K%m%0%$%s$9$k$?$a$K%b%G%`Kx$bMQ$$$F$$$k$H$-$K$O!"(B
> $B%m%0%$%sL>$H%Q%9%o!<%I$,I,MW$H$J$j$^$9!#(B
              $BHkL)$N%Q%9%o!<%I(B
> $B$"$J$?$N%m%0%$%sL>$H%Q%9%o!<%I$r%7%9%F%`$KF~NO$G$-$k?M$G$"$l$P!"C/$G$b(B
                      $BHkL)$N%Q%9%o!<%I(B
> $B$"$J$?$G$"$k$H<1JL$5$l$F$7$^$$$^$9!#(B
> $B$=$l$H8@$&$N$b!"M}O@E*$K$O$"$J$?$N%Q%9%o!<%I$rCN$C$F$$$k$N$O(B
                                    $BHkL)$N%Q%9%o!<%I(B
> $B$"$J$?$7$+$$$J$$$O$:$@$+$i$G$9!#(B


> .SH $B%o%s!]%?%$%`!&%Q%9%o!<%I(B
> $B%j%W%l%$967b$NLdBj$KBP$9$k0l$D$N2r7h:v$O!"(B
> $B%Q%9%o!<%I$rId9f2=$9$kJ}K!$rJQ$(B3$1$k(B
> $B$3$H$G!"%j%s%/$rD6$($FB>$N%7%9%F%`$KAw$j9~$^$l$k0E9f$r(B
                  $B1[$($F(B
> $BM#0lEY$@$1$7$+;HMQ$G$-$J$$$h$&$K$9$k$3$H$G$9!#(B


> .SH S/KEY$B%"%k%4%j%:%`(B
[$BN,(B]
> $B$=$7$F!"=d2s>iD98!::$N%A%'%C%/%5%`(B(CRC)$B$H0[$J$C$F$$$k$3$H$O!"(B
> $B0E9fE*%A%'%C%/%5%`$K$O7k2L$,F10l$N%O%C%7%eCM$H$J$kF~NO$,(B
> $B4v$D$+$"$k$H$$$&$3$H$G$9!#(B
  $BKX$IL5$$$H$$$&$3$H$G$9!#(B
$B$H(B few $B$OH]DjE*$KLu$9$Y$-$@$H;W$$$^$9!#(B
 $B86J8$O(B cryptographic checksums have few inputs that result in the
same output.

> $B$^$?!"EpD0=PMh$J$$$h$&$J%^%7%s$K%f!<%6$,$I$&$d$C$F$bC)$j$D$1$J$$>l9g$K$O(B
> $B$I$&$9$Y$-$G$7$g$&$+!)(B
> $B%f!<%6$O%j%s%/$rD6$($F%Q%9%o!<%I$rAw?.$;$:$K(B
                  $B1[$($F(B
> $B$I$&$d$C$F%Q%9%o!<%I$rJQ99$7$?$i$h$$$N$G$7$g$&$+!)(B



> OPIE$B$r;HMQ$9$k$3$H$K$h$C$F2s@~>e$GEpD0$r$7$F2s$j(B
> $B%Q%9%o!<%I$rC%$*$&$H$9$k?MC#$+$i(B
> $B%f!<%6$,J]8n$5$l$k$N$O<B$O8B$i$l$?>l9g$G$"$C$F!"(B
> $B%f!<%6$,I,$:%Q%9%o!<%I$=$N$b$N$rDL?.2s@~$KAw?.$7$J$$MM$K(B
> $B9TF0$9$k;~$@$1$G$9!#(B
 $BJ8L.$rDI$($F$$$k?M$O!V(BOPIE $B$r;HMQ$9$k$3$H$K$h$C$F!AJ]8n$5$l$k!W$HFI$a(B
$B$k$O$:$G$9$,!"!V(BOPIE $B!A!W$NItJ,$r8eJ}$K0\F0$7$F(B
	$B2s@~$rEpD0$7$F%Q%9%o!<%I$r<hF@$7$h$&$H$9$k<T$+$i(B
	$B%f!<%6$r(B OPIE $B$OJ]8n2DG=$G$9$,!"$3$l$O<B$O8B$i$l$?>l9g$G$"$C$F!"(B
$B$J$I$H$7$?J}$,$h$j?F@Z$@$H;W$$$^$9!#(B


> $B$^$?!"B>$N2?$i$+$N%&%#%s%I%&!&%7%9%F%`(B($BNc$($P!"(BNeWS)$B$HF1$8$h$&$K(B
> X$B%&%#%s%I%&!&%7%9%F%`$r;HMQ$9$l$P!"(B
                             $B$7$F$$$k>l9g!"(B
> $BNc$((BOPIE$BEEBn%W%i%0%i%`$r%m!<%+%k!&%^%7%s>e$G(B
  $BSH$((B ($B$^$?$O!V$?$H$(!W(B)
> $BF0:n$5$;$F$$$?$H$7$F$bFI<T$N%-!<A`:n$rFI$s$G%Q%9%o!<%I$r(B
> $BJaB*$9$k$3$H$O1}!9$K$7$F2DG=$G$9!#(B


> X$B%5!<%P$,!"(BXDM-AUTHORIZATION-1$B!"$d(BXDM-MAGIC-COOKIE-1$B!"0?$$$O(B
> $B%[%9%H!&%"%/%;%9!&%3%s%H%m!<%k$r;HMQ$7$F$$$?$H$7$F$b!"(BX$B%5!<%P$r<i$k$?$a$K(B
> $B>o$KFI<T$N%7%9%F%`$GMxMQ2DG=$J:G9b$N%;%-%e%j%F%#<jCJ$r;HMQ$9$k$Y$-$G$9!#(B
You should always use the best security mechanism available on your system to
protect your X server, be it XDM-AUTHORIZATION-1, XDM-MAGIC-COOKIE-1, or host
access control.
$B$N(B it $B$O(B the best security mechanism available on your system $B$@$H;W$$$^$9!#(B
 be it ... $B$O>r7o(B or $B>yJb$N0UL#$GNI$$$H;W$$$^$9$N$G!"(B
	X $B%5!<%P$r<i$k$?$a$K>o$KFI<T$N%7%9%F%`$GMxMQ2DG=$J(B
	$B:G9b$N%;%-%e%j%F%#<jCJ$r;HMQ$9$k$Y$-$G$9!#(B
	$B$?$H$($=$l$,!"(BXDM-AUTHORIZATION-1$B!"$d(BXDM-MAGIC-COOKIE-1$B!"0?$$$O(B
	$B%[%9%H!&%"%/%;%9!&%3%s%H%m!<%k$G$"$C$?$H$7$F$b!#(B
$B$H$$$C$?0UL#$@$H;W$$$^$9!#(B
--
$BKY@nOBM:(B
