[Gllug] USB Securikey

[Dylan]

On Monday 21 July 2003 20:59, Tethys wrote:
> Adrian McMenamin writes:
> >> > We initially looked at SecureID, but in the end, the solution we
> >> > went with was a 20 line shell script I wrote instead :-) Basically,
> >> > your login shell is now a script that generated a random one time
> >> > password. This is then sent to your mobile phone via SMS, and if
> >> > you can't type in the second password, you don't get in.
> >>
> >> A really cool idea. Is it in releasable form? Can you put up a web
> >> page about how you did it?
> >
> >Can't this just be beaten by using a floppy boot disk or messing with GRUB
> >(dunno about LILO)?
>
> Yes, if you have physical access to the machine. In our case, you don't.
> Firstly, it's in a secure hosting centre. Secondly, we try to give our
> servers fixed boot orders and BIOS passwords to prevent that being changed.

Yes, I gave the Compaq Deskpros which are in my lodgers' rooms BIOS passwords 
- three fails and it lets you in. Hmmm very secure!

Dylan

-- 
Sweet moderation
Heart of this nation
Desert us not
We are between the wars
- Billy Bragg

-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug