From owner-freebsd-small@FreeBSD.ORG Fri Sep 24 15:50:36 2004 Return-Path: Delivered-To: freebsd-small@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1976616A527; Fri, 24 Sep 2004 15:50:36 +0000 (GMT) Received: from post5.inre.asu.edu (post5.inre.asu.edu [129.219.110.120]) by mx1.FreeBSD.org (Postfix) with ESMTP id E6B7543DB1; Fri, 24 Sep 2004 15:50:22 +0000 (GMT) (envelope-from David.Bear@asu.edu) Received: from conversion.post5.inre.asu.edu by asu.edu (PMDF V6.1-1X6 #30769) id <0I4J00A01YHKDM@asu.edu>; Fri, 24 Sep 2004 08:46:32 -0700 (MST) Received: from smtp.asu.edu (smtp.asu.edu [129.219.110.107]) <0I4J009AUYHFT5@asu.edu>; Fri, 24 Sep 2004 08:46:32 -0700 (MST) Received: from moroni.pp.asu.edu (moroni.pp.asu.edu [129.219.69.200]) (8.12.10/8.12.10/asu_smtp_relay,nullclient,tcp_wrapped) with ESMTP id i8OFkQ71011937; Fri, 24 Sep 2004 08:46:26 -0700 (MST) Received: by moroni.pp.asu.edu (Postfix, from userid 500) id 94A67DEE; Fri, 24 Sep 2004 08:46:12 -0700 (MST) Received: from post1.inre.asu.edu (post1.inre.asu.edu [129.219.110.72]) by imap1.asu.edu (8.11.0/8.11.0/asu_cyrus,tcp_wrapped) with ESMTP id g2D9jxE04522 for ; Wed, 13 Mar 2002 02:46:00 -0700 (MST) Received: from conversion.post1.inre.asu.edu by asu.edu (PMDF V6.1 #40110) david.bear@asu.edu) ; Wed, 13 Mar 2002 02:45:59 -0700 (MST) Received: from mx2.freebsd.org (mx2.FreeBSD.org [216.136.204.119]) by asu.edu (PMDF V6.1 #40110) with ESMTP id <0GSW00ILZOGNTA@asu.edu> for iddwb@IMAP1.ASU.EDU (ORCPT david.bear@asu.edu); Wed, 13 Mar 2002 02:45:59 -0700 (MST) Received: from hub.freebsd.org (hub.FreeBSD.org [216.136.204.18]) by mx2.freebsd.org (Postfix) with ESMTP id B0ABC55A7F; Wed, 13 Mar 2002 01:45:55 -0800 Received: by hub.freebsd.org (Postfix, from userid 538) id AEABB37B400; Wed, 13 Mar 2002 01:45:46 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by hub.freebsd.org (Postfix) with SMTP id 4943E2E8083; Wed, 13 Mar 2002 01:45:45 -0800 (PST) Received: by hub.freebsd.org (bulk_mailer v1.12); Wed, 13 Mar 2002 01:45:44 -0800 Received: from mail.spc.org (insomnia.spc.org [195.224.94.183]) by hub.freebsd.org (Postfix) with SMTP id 9C3D337B419 for ; Wed, 13 Mar 2002 01:45:37 -0800 (PST) Received: (qmail 968 invoked by uid 1031); Wed, 13 Mar 2002 09:33:44 +0000 From: Bruce M Simpson In-reply-to: <"from gunther"@aurora.regenstrief.org> Sender: owner-freebsd-security@FreeBSD.ORG To: dwbear75@gmail.com Message-id: <20020313093343.U10322@spc.org> MIME-version: 1.0 Content-type: text/plain; charset=us-ascii Content-disposition: inline Precedence: bulk X-Loop: FreeBSD.org Delivered-to: freebsd-security@freebsd.org Old-To: Gunther Schadow User-Agent: Mutt/1.2.5.1i Lines: 23 References: <3C8E822E.7070509@aurora.regenstrief.org> X-Keywords: cc: freebsd-security@FreeBSD.ORG cc: PicoBSD List Subject: Re: Smartcard device support? X-BeenThere: freebsd-small@freebsd.org X-Mailman-Version: 2.1.1 List-Id: Dedicated and Embedded Systems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Date: Fri, 24 Sep 2004 15:50:36 -0000 X-Original-Date: Wed, 13 Mar 2002 09:33:43 +0000 X-List-Received-Date: Fri, 24 Sep 2004 15:50:36 -0000 I looked at IBM's OpenCryptoki briefly, but it only supports Linux. Also, it seems that it requires a drop-in 'STDLL' to be written for each device. It might be possible to do something similar to SSH by hacking ssh-agent to be tied to a removable medium. BMS On Tue, Mar 12, 2002 at 05:33:18PM -0500, Gunther Schadow wrote: > Hi, > > I'm wondering if it isn't time to roll out smart card use a bit more > aggressively. The question is: are any smart card devices useable > with FreeBSD? Let's say for enabling IPsec associations with racoon > (X509 cert on smartcard instead of a file on disk.) Only if smartcard > is in the box will the IPsec connection work. Of course my constraint > is cost of hardware. So is there any cheap stuff around? > > thanks for any hint, > -Gunther To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message