Re: Help with Freeradius and implementing time basedOne-Time-Passwords

hi alan,
rlm_exec is a very good hint.
i will have a look.

  Is this a standardized method?  If so, what's the name?

no its not standardized. it is similar to the RSA securID.
i am developping this program/system for my thesis. ;)

best regards and thanks for the very fast response.




From: Alan DeKok <aland@deployingradius.com>
Reply-To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> 
To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org>
Subject: Re: Help with Freeradius and implementing time basedOne-Time-Passwords 
Date: Sun, 10 Dec 2006 11:19:42 -0800

Peter Urban wrote:

> i have a mobile phone that produces a token.
> the token is a md5-hash of a shared-secret and the actual time in ms.

  Is this a standardized method?  If so, what's the name?

> now the freeradius has to calculate some tokens (cause time on server
> and mobile are not the same). md5 of the shared secret from the user
> from ldap and actual time.

  Write a program to do this, and run the program when a packet is
received.  See rlm_exec.
> Can it be implemented? Is there literature that I need to have a look at? 
> Is there already a plugin that supports time based one time passwords?

  There's no existing plugin.

  Alan DeKok.
--
  http://deployingradius.com       - The web site of the book
  http://deployingradius.com/blog/ - The blog
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html 

_________________________________________________________________
Sie suchen E-Mails, Dokumente oder Fotos? Die neue MSN Suche Toolbar mit Windows-Desktopsuche liefert in sekundenschnelle Ergebnisse. Jetzt neu! http://desktop.msn.de/ Jetzt gratis downloaden!
This archive was generated by a fusion of Pipermail (Mailman edition) and MHonArc.