[119512] in North American Network Operators' Group
Re: Smartcard and non-password methods (was Re: Password repository)
daemon@ATHENA.MIT.EDU (Scott Howard)
Sat Nov 21 22:46:03 2009
In-Reply-To: <20091121143832.56867.qmail@simone.iecc.com>
Date: Sat, 21 Nov 2009 19:45:06 -0800
From: Scott Howard <scott@doc.net.au>
To: John Levine <johnl@iecc.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Sat, Nov 21, 2009 at 6:38 AM, John Levine <johnl@iecc.com> wrote:
> > Are passwords still the only lowest-common-denominator?
>
> There's OpenID, where a provider can use any verification process it
> wants, but all the OpenID providers I know use ordinary passwords.
>
http://yubico.com/developers/openid/
I'm currently trialing Yubico's for access to a number of Unix systems (via
PAM), and they seem to work very well. Haven't played around with the
OpenID support, so I can't comment on if/how well it works.
Scott.
