[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [OATH-Toolkit-help] Storage of credentials

From: Daniel Pocock
Subject: Re: [OATH-Toolkit-help] Storage of credentials
Date: Fri, 18 Mar 2011 12:13:31 +0100
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv: Gecko/20101226 Iceowl/1.0b1 Icedove/3.0.11

> I had a breif discussion with Simon regarding how to store user
> credentials (alternatives to the /etc/users.oath file) before he
> pointed me to this mail-list. Let's continue the discussion here!

This is essentially why I built dynalogin as an extra layer around HOTP
- you can then put dynalogin and the secrets on a dedicated, hardened
machine.  The secrets never travel on the network, it simply gives
yes/no responses to the auth requests.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]