two factor authentication
Alon Bar-Lev
alon.barlev at gmail.com
Wed Jul 26 15:27:45 EST 2006
Daniel Kahn Gillmor wrote:
> I also share Jefferson Ogata's concerns about the closed nature of the
> hardware, though i note that some smartcards are being developed with
> what appears to be an open process [1].
>
> Smartcards are definitely not a panacea.
Right.
It is better putting your private key on a file and use password to
access the server...
I don't believe what I read!
You don't trust the vendors that manufacture the smartcards, but you
don't offer any other security solution that is close to the level
smartcards offer.
Just select the company you trust...
Exactly the same can be said on your computer manufacturer, network card
manufacturer, even the modem chip manufacturer, and the sound chip manufacturer that
can make your computer as a tap device.
The DOD use smartcards (CAC) all over their application... They are stupid too...
And also violates the white house requirements Jefferson referred to, right?
Best Regards,
Alon Bar-Lev.
More information about the openssh-unix-dev
mailing list