[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [OATH-Toolkit-help] Storage of credentials
From: |
Jean-Michel Pouré - GOOZE |
Subject: |
Re: [OATH-Toolkit-help] Storage of credentials |
Date: |
Fri, 18 Mar 2011 13:07:51 +0100 |
Le vendredi 18 mars 2011 à 11:14 +0100, Max Thoursie a écrit :
> I had a breif discussion with Simon regarding how to store user
> credentials (alternatives to the /etc/users.oath file) before he
> pointed me to this mail-list. Let's continue the discussion here!
I would like to point out that PostgreSQL offers X.509 certificates
encrypted tables. The leak point in OATH is the seed, which must be
protected using the best tools.
Also, I am against file storage, as you can hardly build a GUI on top of
it. Using database makes it easier to make a GUI.
Kind regards,
--
Jean-Michel Pouré - Gooze - http://www.gooze.eu
Re: [OATH-Toolkit-help] Storage of credentials,
Jean-Michel Pouré - GOOZE <=