Date: Wed, 10 Dec 2003 21:26:23 +0100 From: bruce@nikkel.com To: security@freebsd.org Subject: Re: s/key authentication for Apache on FreeBSD? Message-ID: <20031210202623.GC1458@nikkel.com> In-Reply-To: <6.0.0.22.2.20031210124332.04e94ac0@localhost> References: <6.0.0.22.2.20031210115335.04c2fc50@localhost> <20031210093927.70c87960.amonk@gnutec.com> <6.0.0.22.2.20031210124332.04e94ac0@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
> What's needed is one-time passwords for "basic" authentication in > Apache. The problem with using s/key (or opie) together with http basic auth is the repetive nature of http requests. The webserver would expect see the basic authentication string with every single request. You would be promtped for your next onetime password for every single gif or link on the page requested. I don't know how practical that would be. Bruce Nikkel --
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031210202623.GC1458>