Re: [Plug] Re:NT/W95 Login Authentication Schemes

Nick R on Wed, 8 Sep 1999 22:07:50 -0400 (EDT)

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [Plug] Re:NT/W95 Login Authentication Schemes

From: "Nick R" <laktar@hotmail.com>

To: plug@lists.nothinbut.net

Subject: Re: [Plug] Re:NT/W95 Login Authentication Schemes

Date: Wed, 08 Sep 1999 19:07:00 PDT

Reply-to: plug@lists.nothinbut.net

Sender: plug-admin@lists.nothinbut.net

Administration wants to be able to assign blame. Students will share passwords, steal passwords, and it will just generally have bad consequences.

-Laktar, a.k.a. Nick Rosen, laktar.dyndns.org

If I Ever Became An Evil Overlord: 41. Once my power is secure, I will destroy all those pesky time-travel devices. -- Peter's Evil Overlord List, http://www.eviloverlord.com/lists/overlord.html

From: Morgan Wajda-Levie <mpwl@locke.ccil.org> Reply-To: plug@lists.nothinbut.net To: plug@lists.nothinbut.net Subject: Re: [Plug] Re:NT/W95 Login Authentication Schemes Date: Wed, 8 Sep 1999 21:55:29 -0500

On Wed, Sep 08, 1999 at 06:23:05PM -0700, Nick R wrote: > Later versions of Foolproof are pretty good. The earlier versions were > pretty easy to get around (actually extremely easy). But, (and I forget > whether this is an NT security bug or a Foolproof one) there's an obscure > bug that allows you (once in a while) to access files you're not supposed to > through IE. You just have to keep trying and eventually you'll get in. I > hope somebody can clear up the confusion as to where this security flaw lies > (NT or Foolproof). It's been too long. > > Just to clarify, I want a scheme that does NOT just require a password. It > must use something harder to just look at somebody's keyboard or tell a > buddy, like a keycard or something.

Isn't this a bit overkill? If everbody's going to have an account, and people with super accounts are careful, you don't have much to lose. If a student types really slowly, then he's just asking to have his password copied. And it's not as if there aren't easier ways to impersonate a kid through e-mail.

If you really do have a reason for keycards and all that stuff, go to it. I just think it's a bit unecessary, and probably *very* expensive.

My 2 cents.

-- Morgan Wajda-Levie http://www.worldaxes.com/wajdalev PGP fingerprint: A353 C750 660E D8B6 5616 F4D8 7771 DD21 7BF6 221C http://www.worldaxes.com/wajdalev/public.asc for PGP key encrypted mail preferred << attach3 >>

______________________________________________________ Get Your Private, Free Email at http://www.hotmail.com

_______________________________________________ Plug maillist - Plug@lists.nothinbut.net http://lists.nothinbut.net/mail/listinfo/plug

Follow-Ups:

Re: [Plug] Re:NT/W95 Login Authentication Schemes
From: "Jason S." <jason@sn.com>

Prev by Date: Re: [Plug] Re:NT/W95 Login Authentication Schemes

Next by Date: Re: [Plug] NT/W95 Login Authentication Schemes

Previous by thread: Re: [Plug] Re:NT/W95 Login Authentication Schemes

Next by thread: Re: [Plug] Re:NT/W95 Login Authentication Schemes

Index(es):

Date

Thread