From owner-freebsd-security Thu Jan 18 21:45: 7 2001 Delivered-To: freebsd-security@freebsd.org Received: from bsdie.rwsystems.net (bsdie.rwsystems.net [209.197.223.2]) by hub.freebsd.org (Postfix) with ESMTP id 61E7737B400 for ; Thu, 18 Jan 2001 21:44:50 -0800 (PST) Received: from bsdie.rwsystems.net([209.197.223.2]) (1538 bytes) by bsdie.rwsystems.net via sendmail with P:esmtp/R:bind_hosts/T:inet_zone_bind_smtp (sender: ) id for ; Thu, 18 Jan 2001 23:44:46 -0600 (CST) (Smail-3.2.0.111 2000-Feb-17 #1 built 2000-Jun-25) Date: Thu, 18 Jan 2001 23:44:45 -0600 (CST) From: James Wyatt To: Wes Peters Cc: Jonas Luster , freebsd-security@freebsd.org Subject: Re: A wish and a dream... In-Reply-To: <3A6722AE.3830EDD9@softweyr.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Thu, 18 Jan 2001, Wes Peters wrote: > Jonas Luster wrote: > > For my BSD-machines I've bought a Compact Flash 16MB card and some > > CFreaders for the desktops and stored my PGP and SSH stuff on them. A > > small script mounts and unmounts the CF-card (which announces itself to > > the OS as a new file system) under .keys, and .ssh, .pgp and .gpg have > > the needed symlinks. > > > > This seems so far the most cost-effective and portable solution. > > Versus $10 for an iButton reader and $2 for an iButton? You'd have to write > code to extract the keys from the iButton, though. Being able to mount the > CF device is a nice advantage. The iButton also has a CryptoKey which can hold actual passphrases or passwords intact until you give it a key. Maybe I also want the temperature when I authenticate... (^_^) The iButton stuff isn't hard to handle. It would be nice to have a PAM interface for it. - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message