[154012] in North American Network Operators' Group
Re: How to fix authentication (was LinkedIn)
daemon@ATHENA.MIT.EDU (Aaron C. de Bruyn)
Wed Jun 20 23:17:02 2012
In-Reply-To: <32087489.10264.1340234805345.JavaMail.root@benjamin.baylink.com>
From: "Aaron C. de Bruyn" <aaron@heyaaron.com>
Date: Wed, 20 Jun 2012 20:16:22 -0700
To: Jay Ashworth <jra@baylink.com>
Cc: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Wed, Jun 20, 2012 at 4:26 PM, Jay Ashworth <jra@baylink.com> wrote:
> ----- Original Message -----
>> From: "Leo Bicknell" <bicknell@ufp.org>
> Yes, but you're securing the account to the *client PC* there, not to
> the human being; making that Portable Enough for people who use and
> borrow multiple machines is nontrivial.
Or a wizard in your browser/OS/whatever could prompt you to put in a
'special' USB key and write the identity data there, making it
portable. Or like my ssh keys, I have one on my home computer, one on
my work computer, one on my USB drive, etc... If I lose my USB key, I
can revoke the SSH key and still have access from my home computer.
And I'm sure someone would come up with the 'solution' where they
store the keys for you, but only you have the passphrase...ala
lastpass.
-A
