On 2025-09-02, Robert Alessi <[email protected]> wrote: >> this is a shortcoming of login_yubikey(8) - other yk otp-based login >> methods (e.g. using radius to auth at a central location that checks >> coubters) are possible. > > I surmise the same shortcoming also applies to S/Key?
I would expect separate OTP lists per machine for S/Key, otherwise think I would the user will get rather confused as to which OTP to use. Less likely to be the case for yubikey OTPs where you just need any valid OTP with a higher sequence than that ussd by the last successful login. -- Please keep replies on the mailing list.
