From owner-freebsd-security  Thu Jan 18 21:20:38 2001
Delivered-To: freebsd-security@freebsd.org
Received: from homer.softweyr.com (bsdconspiracy.net [208.187.122.220])
	by hub.freebsd.org (Postfix) with ESMTP id 91BE237B6A3
	for <freebsd-security@freebsd.org>; Thu, 18 Jan 2001 21:20:09 -0800 (PST)
Received: from [127.0.0.1] (helo=softweyr.com ident=Fools trust ident!)
	by homer.softweyr.com with esmtp (Exim 3.16 #1)
	id 14InkJ-0000E4-00; Wed, 17 Jan 2001 01:15:07 -0700
Message-ID: <3A65548B.E3D7ADA4@softweyr.com>
Date: Wed, 17 Jan 2001 01:15:07 -0700
From: Wes Peters <wes@softweyr.com>
Organization: Softweyr LLC
X-Mailer: Mozilla 4.75 [en] (X11; U; Linux 2.2.12 i386)
X-Accept-Language: en
MIME-Version: 1.0
To: Pavol Adamec <pavol_adamec@tempest.sk>
Cc: Borja Marcos <borjamar@sarenet.es>, freebsd-security@freebsd.org
Subject: Re: A wish and a dream...
References: <3A641F3F.55AA9322@sarenet.es> <3A642174.9A7A8068@tempest.sk>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Pavol Adamec wrote:
> 
> Rainbow Technologies - iKey
> 
> Paul.
> 
> Borja Marcos wrote:
> >
> >         I know the subject suggests an SPAM, but it isn't.
> >
> >         It would be great to have a small gadget (for example, with
> > an USB interface) with the ssh private key stored, so that ssh used it
> > to authenticate instead of having to store the key in the disk.
> >
> >         Is there anything commercially available?

The iKey looks great, but I've been told it has a known exploit (a hard-
coded keyphrase built into the hardware, or something like that.)

You could easily store a passphrase on a read/write iButton from Dallas
Semiconductor.  They sell an experimenter's kit with a serial port reader
and an iButton for $10 or $12.  The code to interface to it is in ports,
in /usr/ports/comms/mlan.  See the URL references in the pkg-desr (or
pkg/DESCR) file there for more into.

-- 
            "Where am I, and what am I doing in this handbasket?"

Wes Peters                                                         Softweyr LLC
wes@softweyr.com                                           http://softweyr.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message