> Is there any way to combine htaccess with one-time-pads? > > The problem is the followring: Somebody wanna have acces to serval > statistics (provided via https). Unfortunately I`ve thos eproblems: > > A VPN is no solution because this guy should have acces even from > public Computers (so storing a VPN-Key is a very bad idea and a > Password could get sniffed.. :( ). > A simple htaccess is also no solution for him because Passwords could > get sniffed. Even using https wont be neought for him because that > could ge spoofed (man in the Middle in internet-cafes). > > So I searched with google but found no way to use skey with htaccess. > Is there any way to use one-time-pads with htaccess? :-/ > > skey with ftp is no solution because the data gets transfered in > plain-text. skey with ssh is no solution either because I wont realy > open the ssh-port... :-/ > > Any suggestions? > > Kind regards, > Sebastian >
Write a 'wrapper' around your pages using cgi/php/whatever, that provides a loginprompt with onetime keys. Using sessions will give you one key per session instead of one per file fetched. Regards // Bjorn
