Date: Wed, 9 Jul 2008 13:48:36 +0530 From: "Ivan Grover" <ivangrvr299@gmail.com> To: "Jason Stone" <freebsd-security@dfmm.org> Cc: freebsd-security@freebsd.org Subject: Re: OPIE Challenge sequence Message-ID: <670f29e20807090118x1f7c4f65v74373fb43b8fe799@mail.gmail.com> In-Reply-To: <alpine.BSF.1.00.0807081205170.34772@treehorn.dfmm.org> References: <670f29e20807080316s6cf57612jf5135bfd340e3328@mail.gmail.com> <20080708113030.GN62764@server.vk2pj.dyndns.org> <670f29e20807080641wb6f76cctfacfbb2af2f4f7e9@mail.gmail.com> <8663rg5qvd.fsf@ds4.des.no> <alpine.BSF.1.00.0807081205170.34772@treehorn.dfmm.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Thanks all for your valuable response. Regards, Ivan On Wed, Jul 9, 2008 at 12:57 AM, Jason Stone <freebsd-security@dfmm.org> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > On the bright side, it should be fairly easy to write an OTP calculator >> that run on a cell phone >> > > These already exist for J2ME-enabled mobiles (which is most of them?): > > http://tanso.net/j2me-otp/ > http://otp-j2me.sourceforge.net/ > > > Systems like OPIE, where the challenge is actually issued to the user >> and not just to the user's software, require the user to have access to >> a response calculator, or to carry a sheet of precalculated responses. >> > > There exist apps (i.e., browsers, FTP clients, mailers, etc) that integrate > OPIE and can transparently respond to challenges. The user just puts in his > password, and he doesn't worry about plaintext or OPIE or whatever; the app > just does the right thing. Fetch, an FTP client for the Mac, is one such > app. > > One could argue that this encourages users to just punch in their password > and not understand if it's going to go over the wire in the clear or be used > to answer a challenge, but it's very useful when you have users who are > incapable of making such distinction in the first place and you just need to > make sure their password is secure for _your_ service. > > > -Jason > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.7 (FreeBSD) > Comment: See https://private.idealab.com/public/jason/jason.gpg > > iD8DBQFIc7+YswXMWWtptckRAoaAAJkBnis9pNHnwuXCc6zjqESrDh8zGwCfTYWC > 41JZRoD12LhIpG3QK7cfhMU= > =w11K > -----END PGP SIGNATURE----- > _______________________________________________ > freebsd-security@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org > " >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?670f29e20807090118x1f7c4f65v74373fb43b8fe799>