From owner-freebsd-net Fri Nov 9 15:20:29 2001 Delivered-To: freebsd-net@freebsd.org Received: from InterJet.elischer.org (c421509-a.pinol1.sfba.home.com [24.7.86.9]) by hub.freebsd.org (Postfix) with ESMTP id 7A8CF37B405 for ; Fri, 9 Nov 2001 15:20:25 -0800 (PST) Received: from localhost (localhost.elischer.org [127.0.0.1]) by InterJet.elischer.org (8.9.1a/8.9.1) with ESMTP id PAA82164; Fri, 9 Nov 2001 15:07:23 -0800 (PST) Date: Fri, 9 Nov 2001 15:07:21 -0800 (PST) From: Julian Elischer To: Brooks Davis Cc: Andre Oppermann , Pekka Nikander , freebsd-net , Marco Molteni Subject: Re:SecureID (was 802.1x) In-Reply-To: <20011109135406.A30773@Odin.AC.HMC.Edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Fri, 9 Nov 2001, Brooks Davis wrote: > On Fri, Nov 09, 2001 at 10:40:28PM +0100, Andre Oppermann wrote: > > It could also better interact with other userland services like login > > or PAM. Think with logging in, it will authenticate you to the > > (physical) network and the (ethernet) switch will put you into the > > right VLAN for example. Or it could prompt for secure-id. > > This one is pretty critical. If you can't support SecurID passwords > (60sec lifetime) then there are lots of sites that won't be able to work > with the system at all. We've already seen this problem with the Cisco > LEAP stuff. Does anyone else have secureID fobs running in FreeBSD based systems? (if so I'd like to chat) > > -- Brooks > > -- > Any statement of the form "X is the one, true Y" is FALSE. > PGP fingerprint 655D 519C 26A7 82E7 2529 9BF0 5D8E 8BE9 F238 1AD4 > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message