Quote:
Originally posted by Varius
We have installed a new verification system on our gateway server (the sole point of entry on our network).
Check this out:
Each person who needs access is given a pager-like device. This device displays a 6-digit random sequence that changes EVERY 10 SECONDS.
When you login to the server, through SSH or SCP, you are prompted for your name as usual. Then instead of password, you get:
PASSCODE:
which is a 4 digit PIN you choose + the 6 digits you see on the pager-thing.
Then it asks you to wait until the numbers change (so max 10 seconds) and enter that sequence.
If all is good, yo get in. If not, you're stuck outside.
This is awesome to me, as even if someone broke your code and the sequence (which is already next-to-impossible), they would then only have 10 seconds to get the next sequence.
How secure are you ?? 
|
That's pretty fucking cool. People who bank through Swedish banks get a similar thing, it looks like a little calculator and it generates a code to enter when they log onto their account through internet banking.
