Dear all,
In a discussion with Alon Bar-Lev on OpenVPN mailing list, Alon explains
that lock_login=true is better for security as it restricts login to the
token. Also, multi-threaded applications may have problems accessing the
token. On my side, I noticed that some applications like Firefox don't
start until the token is available.
All this worries me for usability. I am not worried about Firefox not
starting, only that there is no user message. Of course, I would prefer
Firefox to start and indicate that the token is not usable.
So my question is:
Is there a way for an application using opensc-pkcs11.so to know that a
token is being accessed in locked mode and therefore is not available?
What are your possible plans in this field?
Kind regards,
--
Jean-Michel Pouré - Gooze - http://www.gooze.eu
_______________________________________________
opensc-devel mailing list
opensc-devel@lists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-devel
