Freeradius and 2 Factor Authentication
Michael Ströder
michael at stroeder.com
Sun Jun 5 22:31:33 CEST 2016
Michael Ströder wrote:
> Peter Lambrechtsen wrote:
>> do see there are multiple sites now support TOTP where the enrollment is
>> seamless for end-users. Login to a web site, use Google Authenticator or
>> Authy or any other myriad of TOTP clients to scan the QR code.
>
> I really wonder why scanning the shared secret as QR code from a screen is
> considered an acceptable security practice. :-/
BTW: And hosted OTP services have access to all the shared secrets...
Ciao, Michael.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20160605/105ae066/attachment-0001.bin>
More information about the Freeradius-Users
mailing list