Date: Sun, 24 Mar 2013 09:06:27 +0100 From: CeDeROM <cederom@tlen.pl> To: Doug Hardie <bc979@lafn.org> Cc: "freebsd-questions@freebsd.org List" <freebsd-questions@freebsd.org> Subject: Re: Client Authentication Message-ID: <CAFYkXjk4zFcY0TW63_PyCeCnVcpypKO8mNiL6eGKa=qViDzLkw@mail.gmail.com> In-Reply-To: <CAFYkXjmc47oaCkMMF40oNM3Zsk=L1x6HeyUhYY2pRMfgKf-UZg@mail.gmail.com> References: <B2DC7342-9F1A-489A-94F0-49802B1E5DF6@lafn.org> <CAFYkXjmc47oaCkMMF40oNM3Zsk=L1x6HeyUhYY2pRMfgKf-UZg@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Mar 24, 2013 at 9:03 AM, CeDeROM <cederom@tlen.pl> wrote: > Why don't you just use PKI for authentication (you can generate your > own certificates)? You can easily upload keys/certificated to client > machines (PC, Android, Apple, ...). That should work :-) You can additionally encrypt keys/vertificates with a easy to remember short PIN or password for increased security. I have seen this working with Aladdin eToken maybe there is a pure software solution :-) -- CeDeROM, SQ7MHZ, http://www.tomek.cedro.info
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAFYkXjk4zFcY0TW63_PyCeCnVcpypKO8mNiL6eGKa=qViDzLkw>