From owner-freebsd-security Tue Jan 16 10: 7: 3 2001 Delivered-To: freebsd-security@freebsd.org Received: from preacher.netwarriors.org (unknown [216.34.142.180]) by hub.freebsd.org (Postfix) with ESMTP id D7A4D37B401 for ; Tue, 16 Jan 2001 10:06:43 -0800 (PST) Received: (from loki@localhost) by preacher.netwarriors.org (8.11.1/8.11.1) id f0GI6hx59329 for freebsd-security@freebsd.org; Tue, 16 Jan 2001 10:06:43 -0800 (PST) (envelope-from loki) Date: Tue, 16 Jan 2001 10:06:43 -0800 From: Jonas Luster To: freebsd-security@freebsd.org Subject: Re: A wish and a dream... Message-ID: <20010116100642.A59220@netwarriors.org> Mail-Followup-To: Jonas Luster , freebsd-security@freebsd.org References: <3A641F3F.55AA9322@sarenet.es> <3A642174.9A7A8068@tempest.sk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3A642174.9A7A8068@tempest.sk>; from pavol_adamec@tempest.sk on Tue, Jan 16, 2001 at 11:24:52AM +0100 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org [ Reformatted for readers sanity ] * Pavol Adamec sez: > > I know the subject suggests an SPAM, but it isn't. > > > > It would be great to have a small gadget (for example, with > > an USB interface) with the ssh private key stored, so that ssh used it > > to authenticate instead of having to store the key in the disk. > Rainbow Technologies - iKey If I understand the webpage correctly, then this is not a storage medium for random keys and such... but myabe I'm missing this fetaure. For my BSD-machines I've bought a Compact Flash 16MB card and some CFreaders for the desktops and stored my PGP and SSH stuff on them. A small script mounts and unmounts the CF-card (which announces itself to the OS as a new file system) under .keys, and .ssh, .pgp and .gpg have the needed symlinks. This seems so far the most cost-effective and portable solution. jonas -- http://www.advogato.org/person/jLoki To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message