[ale] Smart cards
Jim Kinney
jim.kinney at gmail.com
Thu Oct 6 23:40:21 EDT 2011
Do a CA and generate client certs. Distribute as a cd with screen shot
install instructios or require them to bring in there gear.
Alternate is to build a static firefox with their cert installed onto a cd.
They run that for remote access.
If they can't be trusted with a password for cert access, how can they be
trusted with the access at all? It's amazing how smart people get when their
food is on the line.
On Oct 6, 2011 11:09 PM, "Michael B. Trausch" <mike at trausch.us> wrote:
> On Thu, Oct 06, 2011 at 10:45:19PM -0400, Jim Kinney wrote:
>> Take the card home and use to access work data? Are you going to
>> issue readers as well? Without a pin or something entered by the
>> user there's no stopping a cloned or loaned card.
>
> No, access from home would be at their own expense. They already have
> access from home, but the thing is that they're using passwords, and
> you know what that means with normal users. (Of course, this might
> not be a viable option anyway, seeing as they have to be able to
> access things with their phones as well, and those obviously don't do
> smart cards... hrm...)
>
> Maybe I need to think about some other option, then. Hrm. Well, it
> was a nice idea.
>
> --- Mike
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.ale.org/pipermail/ale/attachments/20111006/07569ae0/attachment.html
More information about the Ale
mailing list