[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [OATH-Toolkit-help] Storage of credentials
From: |
Daniel Pocock |
Subject: |
Re: [OATH-Toolkit-help] Storage of credentials |
Date: |
Fri, 18 Mar 2011 12:13:31 +0100 |
User-agent: |
Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.16) Gecko/20101226 Iceowl/1.0b1 Icedove/3.0.11 |
> I had a breif discussion with Simon regarding how to store user
> credentials (alternatives to the /etc/users.oath file) before he
> pointed me to this mail-list. Let's continue the discussion here!
This is essentially why I built dynalogin as an extra layer around HOTP
- you can then put dynalogin and the secrets on a dedicated, hardened
machine. The secrets never travel on the network, it simply gives
yes/no responses to the auth requests.
Re: [OATH-Toolkit-help] Storage of credentials, Jean-Michel Pouré - GOOZE, 2011/03/18