Il 23/07/2012 08:49, helpcrypto helpcrypto ha scritto: > IIRC, C_Login can accept user type CKU_SO to login as admin, the > problem might be "what you could do as admin". Probably that depends > on the card. The problem with FF (and TB) is that it calls C_login only once, then assumes the login is still valid. Even if card got reset. Even worse, it asks for *ALL* PINs when the token gets added. That made me give up having pkcs#11 enabled in FF/TB. IIRC there are a couple of bug reports in bugzilla, but seems they won't get fixed. "Friendly token" (or something similar...) setting helps a bit, but IMO it remains unsafe to have a token accessed by FF.
BYtE, Diego _______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel
