subject:"Re\: \[Openvpn\-devel\] \[RFC\] \- Enable 2FA to be used with renegotiations"

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-09-16 Thread David Sommerseth

On 25/08/16 15:45, David Sommerseth wrote: > > Hi, > [...snip...] > > What the patch-set does is: > > - Add --auth-gen-token, and when used the following steps happens > > - After a successful normal user/password authentication, it will > generate a random token for this tunnel and keep a lo

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-09-02 Thread Jens Neuhalfen

> > The patch-set can be found here: > > > > And the git tree can be found here: >

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-27 Thread David Sommerseth

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 27/08/16 04:58, Selva Nair wrote: > Hi, > > On Thu, Aug 25, 2016 at 9:45 AM, David Sommerseth > > wrote: > > The patch-set can be found here: >

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-26 Thread Selva Nair

Hi, On Thu, Aug 25, 2016 at 9:45 AM, David Sommerseth < open...@sf.lists.topphemmelig.net> wrote: > The patch-set can be found here: > > > And the git tree can be found here: > > (Check o

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-26 Thread Gert Doering

Hi, On Fri, Aug 26, 2016 at 12:21:50AM +0200, Steffan Karger wrote: > One thing I think might be useful is a timeout that forces a client to > do a full reauth. I can imagine a company policy that, for example, > requires users to perform a 2FA at least every 4 hours. I'd want to > implement suc

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread David Sommerseth

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 26/08/16 00:21, Steffan Karger wrote: > One thing I think might be useful is a timeout that forces a client > to do a full reauth. I can imagine a company policy that, for > example, requires users to perform a 2FA at least every 4 hours. > I'd wan

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread Steffan Karger

On 25 August 2016 at 15:45, David Sommerseth wrote: > I've been working a bit on a new patch-set which enables third-party > user/password authentication mechanisms using two factor > authentications [2FA] (such as OTP) and not needing to disable the > renegotiation features of OpenVPN. > > Curren

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread David Sommerseth

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 25/08/16 18:53, Selva Nair wrote: > As for caching, either the token will have to be cached unless > management is in use in which case the UI/GUI can remember the > token and supply it during reneg. Right, but I think we both agree that caching a

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread Selva Nair

On Thu, Aug 25, 2016 at 11:36 AM, David Sommerseth wrote: > > On 25/08/16 16:32, Selva Nair wrote: > > > > On Thu, Aug 25, 2016 at 10:15 AM, David Sommerseth > > > > wrote: > > > > On 25/08/16 15:58, David Woodhouse wrote: > >> On Thu, 2016-08-25 at 15:4

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread David Sommerseth

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 25/08/16 16:32, Selva Nair wrote: > > On Thu, Aug 25, 2016 at 10:15 AM, David Sommerseth > > wrote: > > On 25/08/16 15:58, David Woodhouse wrote: >> On Thu, 2016-08-25 at 15:45 +0200, David Sommerseth wr

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread Selva Nair

On Thu, Aug 25, 2016 at 10:15 AM, David Sommerseth < open...@sf.lists.topphemmelig.net> wrote: > On 25/08/16 15:58, David Woodhouse wrote: > > On Thu, 2016-08-25 at 15:45 +0200, David Sommerseth wrote: > >> > >> > >> I've been working a bit on a new patch-set which enables > >> third-party user/pa

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread David Sommerseth

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 25/08/16 15:58, David Woodhouse wrote: > On Thu, 2016-08-25 at 15:45 +0200, David Sommerseth wrote: >> >> >> I've been working a bit on a new patch-set which enables >> third-party user/password authentication mechanisms using two >> factor authen

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

2016-08-25 Thread David Woodhouse

On Thu, 2016-08-25 at 15:45 +0200, David Sommerseth wrote: > > > I've been working a bit on a new patch-set which enables third-party > user/password authentication mechanisms using two factor > authentications [2FA] (such as OTP) and not needing to disable the > renegotiation features of OpenVPN

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

Re: [Openvpn-devel] [RFC] - Enable 2FA to be used with renegotiations

13 matches

Site Navigation

Mail list logo

Footer information