On 6/8/07, Richard Hartmann wrote:
On 6/8/07, Alon Bar-Lev wrote:
> You keep forgeting that attempting to authenticate to smartcard using
> invalid PIN will eventually lock it.
If there is only one PIN, that is not any threat. It either
authenticates correctly or times out. In neither case is
Well... you keep saying that you know what you are doing... So please
explain me
1. What happens if no card is inserted at startup?
2. What happens if the card is removed?
3. What happens if the card is removed and inserted?
4. What happens if the wrong card is inserted?
Smartcards are dynami
Hi Alon,
This is not wise in term of security.
This depends on the use case and the requirements. If there was a way
to have the user enter their PIN before logging into Windows, I would
gladly use that.
Furthermore, the method I described is still more secure than any
solution based on certi
As you figured it out... This is not wise in term of security.
So I am sorry, but I don't think this should be supported.
Especially when you can achieve the same via the management interface.
Best Regards,
Alon Bar-Lev.
On 6/8/07, Richard Hartmann wrote:
Hi all,
I am setting up a test case
Hi all,
I am setting up a test case where the user is supposed to plug in his
USB token before booting. Once he boots up and prior to him logging in
to Windows, I need to establish an OpenVPN connection to our
aggregator.
To do this, I am using a 'solution' where I abuse a netcat connection
to
