Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 09-12-2007, 01:16 PM   #1
Registered: Nov 2005
Location: New Jersey, USA
Distribution: SuSE
Posts: 492

Rep: Reputation: 31
Secure authentication - OTP? Token?


I'm interested in experimenting with secure authentication methods - specifically, one-time passwords and/or hardware tokens.

As to OTP, I've seen OPIE but don't like the idea of hard-printing a list of passwords, and am not very interested in running an OPIE generator on my Palm-based smartphone - an inherently insecure device. I've considered the idea of building a small microcontroller-based unit to either generate OPIE passwords or, more realistically (due to the capabilities of these units) store a pre-generated list.

More to the point, I really like the idea of a hardware password generator like the SecurID or SafeWord card, but don't have the budget for their server software. Does anyone know of a hardware solution which can be paired with an F/OSS server, or a PAM module?
Old 09-15-2007, 01:46 PM   #2
LQ Newbie
Registered: Aug 2004
Distribution: Shrike & Tettnang
Posts: 18

Rep: Reputation: 0
I am too interested in any hardware implementations of open source OTP -- possibly an SKEY fob. Haven't seen or heard of any other than the popular SecurID.

Any Ideas?
Old 09-15-2007, 08:59 PM   #3
Registered: May 2007
Location: Chas, SC
Distribution: slackware, gentoo, fedora, LFS, sidewinder G2, solaris, FreeBSD, RHEL, SUSE, Backtrack
Posts: 429

Rep: Reputation: 65
secure computing make one called safeword. It implentments one-time passwords and each keyfob requires a pin number.
Old 12-07-2007, 01:27 AM   #4
Registered: Nov 2005
Location: New Jersey, USA
Distribution: SuSE
Posts: 492

Original Poster
Rep: Reputation: 31
I'm familiar with SafeWord cards - I actually have 3 from various machines at various jobs.

Unfortunately, I know that their infrastructure is quite expensive. I was looking for something that I could reasonably use for 3 users on a development network - essentially dirt cheap.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Authentication Token Manipulation Error manfernandez Linux - Security 10 06-06-2008 12:49 PM
Authentication Token Manipulation Error lt_wentoncha Mandriva 2 08-09-2007 04:16 AM
cannot login - authentication token manipulation error aeby Linux - Security 3 07-19-2007 11:21 AM
passwd:Authentication token manipulation error jovie Linux - Security 3 05-10-2006 02:46 AM
authentication token manipulation error abuelmaati Linux - Newbie 3 02-04-2005 08:21 AM

All times are GMT -5. The time now is 11:58 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration