[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: One Time Password support in debian

that solution has its problems. public key cryptography implimented in java
is vulnerable to man-in-the-middle attacks unless it is able to save some
data to disk between sessions. i'm not an expert in ssh (or java really) but
i recall threads about this. no computer is secure, really. your best bet is
to just not do anything too sensitive. if all you want is email, get a
temporary account that is not linked to anything important. a webmail
solution like hotmail would be a good start.

frol@h55p201.delphi.afb.lu.se (frol@h55p201.delphi.afb.lu.se) wrote:
> Hello,
> 
> An other solution to your problem could be to use a java-applet ssh client. 
> Then you could use ssh to login from any java enabled browser in the world, 
> and you dont have to worry about one time passwords at all.
> 
> Look at:
> 	http://www.cl.cam.ac.uk/~fapp2/software/java-ssh/
> 	http://www.mud.de/se/jta/
> 
> Happy traveling,
> /Fredrik
> 
> 



-- 
(jacob kuntz)                    jpk@cape.com jake@{megabite,underworld}.net
(megabite systems)                       "think free speech, not free beer."
Reply to: