|
From: | Stevie O |
Subject: | Re: Security |
Date: | Sun, 16 Sep 2001 20:37:26 -0400 |
At 01:19 AM 9/17/2001 +0100, you wrote:
Quoting Stevie O (address@hidden): > Has anyone considered having a challenge-response type authentication, > where the servers ends a challenge string, and the client returns a > response? Use SSH and you suddenly have a wealth of authentication methods to chose from. If you really need that strong authentication you should probably know how use SSH to achieve this.
The method I suggestion is no stronger than pserver is; it simply makes it harder for someone to sniff the password off the network (which is incredibly easy to do with the current protocol). And the idea is to NOT have to give people login access to my machine just so they can access the repository.
-- Stevie-O Real programmers use COPY CON PROGRAM.EXE
[Prev in Thread] | Current Thread | [Next in Thread] |