IMO, OTP is inherently incompatible with replicas because a client can authenticate to
each replica with what is intended to be a one time password. The only way to preclude
this is, as was basically suggested, is to chain it to the master such that each password
can only be used one time.