On Fri, Dec 07, 2007 at 03:23:13PM -0600, K K wrote:
> > the goal is to allow only users with
> > (1) a hardware token and
> > (2) the correct passwords to access services (IMAPS, etc) on openbsd
> > machines.
you may want to look at http://www.fatsquirrel.org/veghead/wot/skey.php and
its corresp
One thing I didn't see mentioned is public key certificates. Jacob's
need to control access in a granular fashion might be solvable through
the use of client certificates and SSL, rather than one-time
passwords?
Overall Vin makes good points, and includes useful links, so I won't
re-write my scre
s
> services (IMAPS, etc) on openbsd machines.
>
> a list of OTPs would be sufficient if i didn't think i'd end up
> regularly issuing new lists to users. if there is any "good" solution of
> the sort i describe above, i would appreciate pointers from more
&
would like to lock "random" users out of the services that are hosted on
machines here and remember LLNL, etc, using a RSA secureID to effect
this back in the day: you had to enter your secureID string before being
able to ssh into your user account through the firewall. i am aware that
the sec
4 matches
Mail list logo
