[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [OATH-Toolkit-help] Storage of credentials
|
From: |
Max Thoursie |
|
Subject: |
Re: [OATH-Toolkit-help] Storage of credentials |
|
Date: |
Fri, 18 Mar 2011 16:54:51 +0100 |
Bah, I faild to use the mailing list. Is it possible to set a reply-to
header? This mail was ofcourse meant for the list. /max
On Fri, Mar 18, 2011 at 2:08 PM, Max Thoursie <address@hidden> wrote:
> On Fri, Mar 18, 2011 at 12:13 PM, Daniel Pocock <address@hidden> wrote:
>>> I had a breif discussion with Simon regarding how to store user
>>> credentials (alternatives to the /etc/users.oath file) before he
>>> pointed me to this mail-list. Let's continue the discussion here!
>>
>> This is essentially why I built dynalogin as an extra layer around HOTP
>> - you can then put dynalogin and the secrets on a dedicated, hardened
>> machine. The secrets never travel on the network, it simply gives
>> yes/no responses to the auth requests.
>
> That's great when you can rely on a central server! Many times though
> that's not an option.
>
> /Max
>
Re: [OATH-Toolkit-help] Storage of credentials, Jean-Michel Pouré - GOOZE, 2011/03/18