If memory serves me right, Randy Bush wrote:
> is there a freebsd pam tacacs+ hack?
Yep. Haven't actually used it though.
PAM_TACPLUS(8) FreeBSD System Manager's Manual
PAM_TACPLUS(8)
NAME
pam_tacplus -- TACACS+ authentication PAM module
Bruce.
signature.asc
Description: OpenP
On Sat, Nov 21, 2009 at 10:45 PM, Scott Howard wrote:
> On Sat, Nov 21, 2009 at 6:38 AM, John Levine wrote:
>
>> > Are passwords still the only lowest-common-denominator?
>>
>> There's OpenID, where a provider can use any verification process it
>> wants, but all the OpenID providers I know use o
On Sat, 21 Nov 2009, Joel Jaeggli wrote:
Since this plays nicely with eap-tls, 802.1x. ike, ssl/tls, and s/mime
it seems like a shoe-in, once you have a uniform authentication system
one is inclined to use it for everything. obviously being involved in
several of these with with multiple ca's is
cards and tokens are a proxy for the use of a certificate authentication
system...
You can in fact do certificate auth without the use of cards or tokens
or mix and match physical tokens and other private key storage depending
on need with the same authentication backend (typically ldap).
Since t
is there a freebsd pam tacacs+ hack?
randy
On Sat, Nov 21, 2009 at 6:38 AM, John Levine wrote:
> > Are passwords still the only lowest-common-denominator?
>
> There's OpenID, where a provider can use any verification process it
> wants, but all the OpenID providers I know use ordinary passwords.
>
http://yubico.com/developers/openid/
I'
On Sat, Nov 21, 2009 at 04:58:27PM -0500, Jeffrey Lyon wrote:
> So it works as a standalone password vault also?
I don't know. My only experience with it has been as an OpenID
endpoint/provider/whatever, and it was on that basis that I replied
originally.
- Matt
So it works as a standalone password vault also?
Jeff
On Sat, Nov 21, 2009 at 4:55 PM, Matthew Palmer wrote:
> On Sat, Nov 21, 2009 at 04:06:48PM -0500, Jeffrey Lyon wrote:
>> I was pretty excited about this post until I found out that myvidoop
>> only works on older version of FF.
>
> I can onl
On Sat, Nov 21, 2009 at 04:06:48PM -0500, Jeffrey Lyon wrote:
> I was pretty excited about this post until I found out that myvidoop
> only works on older version of FF.
I can only find something about the plugin not working on FF 3.5, but I
don't use the plugin since I only use it as an OpenID en
I was pretty excited about this post until I found out that myvidoop
only works on older version of FF.
Jeff
On Sat, Nov 21, 2009 at 12:31 PM, Matthew Palmer wrote:
> On Sat, Nov 21, 2009 at 02:38:32PM -, John Levine wrote:
>> > Are passwords still the only lowest-common-denominator?
>>
>> T
le
> with smart cards, you are basically stuck with either the Microsoft's
> corporate/non-service provider friendly solution, or have to code your own).
>
>
> My $0.02,
> Adam Stasiniewicz
>
>
> -Original Message-
> From: Sean Donelan [mailto:s...@donelan
-
From: Sean Donelan [mailto:s...@donelan.com]
Sent: Friday, November 20, 2009 5:43 PM
To: nanog@nanog.org
Subject: Smartcard and non-password methods (was Re: Password repository)
Are any network providers supporting smartcards or other non-password
based authentication methods? Passwords alway
On Sat, Nov 21, 2009 at 02:38:32PM -, John Levine wrote:
> > Are passwords still the only lowest-common-denominator?
>
> There's OpenID, where a provider can use any verification process it
> wants, but all the OpenID providers I know use ordinary passwords.
myvidoop.com does OpenID auth base
John Levine wrote:
Are passwords still the only lowest-common-denominator?
There's OpenID, where a provider can use any verification process it
wants, but all the OpenID providers I know use ordinary passwords.
Yeah, and every ISP would probably use key authentication, except
there's not a
> Are passwords still the only lowest-common-denominator?
There's OpenID, where a provider can use any verification process it
wants, but all the OpenID providers I know use ordinary passwords.
R's,
John
Are any network providers supporting smartcards or other non-password
based authentication methods? Passwords always end up blaming the
user for choosing/not remembering good passwords instead of blaming the
technology for choosing/not doing things so the user isn't forced to
work around its
16 matches
Mail list logo
