Hello Ludovic, On Thu, Jan 5, 2012 at 03:37, NIIBE Yutaka <[email protected]> wrote: > It is extensively tested with Vasco DIGIPASS 920. Note that the > reader has firewall feature which doesn't allow VERIFY or CHANGE > REFERENCE DATA command with data from host, but only allows pinpad > entry by the reader. With no pinpad entry support, this reader were > useless at all. It works well except --unblock --admin.
This is an excerpt from gnupg-devel. It seems there is at least one more reader available that does PIN firewalling. I was wondering if it would make sense to: - add a "remarks" section to the reader matrix about this feature - create a small test-script for probing "various" parameters of the reader, which could be made a standard part for sending in information about new readers With a huge warning about possible lockup, it would be even better to probe for cards that do not allow querying tries left information with an empty verify command (which should also be firewalled by the reader) While testing the firewalled readers from Gemalto, I made some python scripts which could be tuned for this purpose. Best, Martin _______________________________________________ Muscle mailing list [email protected] http://lists.drizzle.com/mailman/listinfo/muscle
