Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 24 Mar 2013 09:06:27 +0100
From:      CeDeROM <cederom@tlen.pl>
To:        Doug Hardie <bc979@lafn.org>
Cc:        "freebsd-questions@freebsd.org List" <freebsd-questions@freebsd.org>
Subject:   Re: Client Authentication
Message-ID:  <CAFYkXjk4zFcY0TW63_PyCeCnVcpypKO8mNiL6eGKa=qViDzLkw@mail.gmail.com>
In-Reply-To: <CAFYkXjmc47oaCkMMF40oNM3Zsk=L1x6HeyUhYY2pRMfgKf-UZg@mail.gmail.com>
References:  <B2DC7342-9F1A-489A-94F0-49802B1E5DF6@lafn.org> <CAFYkXjmc47oaCkMMF40oNM3Zsk=L1x6HeyUhYY2pRMfgKf-UZg@mail.gmail.com>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
On Sun, Mar 24, 2013 at 9:03 AM, CeDeROM <cederom@tlen.pl> wrote:
> Why don't you just use PKI for authentication (you can generate your
> own certificates)? You can easily upload keys/certificated to client
> machines (PC, Android, Apple, ...). That should work :-)

You can additionally encrypt keys/vertificates with a easy to remember
short PIN or password for increased security. I have seen this working
with Aladdin eToken maybe there is a pure software solution :-)

-- 
CeDeROM, SQ7MHZ, http://www.tomek.cedro.info



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?CAFYkXjk4zFcY0TW63_PyCeCnVcpypKO8mNiL6eGKa=qViDzLkw>