Hi :) > hmm.... > so does this mean that we can't do better? > Can we make the code on the smartcard someone's private or key? And, > encrypt the auth over the wire somehow? so that no one could sniff the > key off the wire...or if they do, they will only get the decrypted > answer, which would do them no good on the next log-in. > > could we make ltsp client simply ask card to use info on card to decrypt > a string... > but, no-one would be able to clone card, by extracting info off of it... > > You will have to forgive me. I am a complete newbie to smart cards used > in this situation. I know one thing though... > the smart card itself would always be the weak link... > since, someone could steal it, and gain access to the network. I still > think it would be something our administrators would like. > i hope smartcard with biometric can reduce the security risk. But i, also, the complete newbie....
best regards, nopri _______________________________________________ Muscle mailing list [EMAIL PROTECTED] http://lists.musclecard.com/mailman/listinfo/muscle
