hi alan, rlm_exec is a very good hint. i will have a look.
Is this a standardized method? If so, what's the name? no its not standardized. it is similar to the RSA securID. i am developping this program/system for my thesis. ;)
best regards and thanks for the very fast response.
From: Alan DeKok <aland@deployingradius.com> Reply-To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> To: FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Subject: Re: Help with Freeradius and implementing time basedOne-Time-Passwords Date: Sun, 10 Dec 2006 11:19:42 -0800
Peter Urban wrote:
i have a mobile phone that produces a token. the token is a md5-hash of a shared-secret and the actual time in ms.
Is this a standardized method? If so, what's the name?
now the freeradius has to calculate some tokens (cause time on server and mobile are not the same). md5 of the shared secret from the user from ldap and actual time.
Write a program to do this, and run the program when a packet is received. See rlm_exec.
Can it be implemented? Is there literature that I need to have a look at? Is there already a plugin that supports time based one time passwords?
There's no existing plugin.
Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
_________________________________________________________________ Sie suchen E-Mails, Dokumente oder Fotos? Die neue MSN Suche Toolbar mit Windows-Desktopsuche liefert in sekundenschnelle Ergebnisse. Jetzt neu! http://desktop.msn.de/ Jetzt gratis downloaden!