[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [OATH-Toolkit-help] Storage of credentials

From: Jean-Michel Pouré - GOOZE
Subject: Re: [OATH-Toolkit-help] Storage of credentials
Date: Fri, 18 Mar 2011 13:07:51 +0100

Le vendredi 18 mars 2011 à 11:14 +0100, Max Thoursie a écrit :
> I had a breif discussion with Simon regarding how to store user
> credentials (alternatives to the /etc/users.oath file) before he
> pointed me to this mail-list. Let's continue the discussion here! 

I would like to point out that PostgreSQL offers X.509 certificates
encrypted tables. The leak point in OATH is the seed, which must be
protected using the best tools.

Also, I am against file storage, as you can hardly build a GUI on top of
it. Using database makes it easier to make a GUI.

Kind regards,
                  Jean-Michel Pouré - Gooze - http://www.gooze.eu

reply via email to

[Prev in Thread] Current Thread [Next in Thread]