|
Posted by Oliver Habegger on January 10, 2006, 10:21 am
If you were Registered and logged in, you could reply and use other advanced thread options
Hi
I am looking for an authentication software with RADIUS support and the
following features:
- Username
- Password
- Secret question
So the idea is that the user need to enter not only the username and
password, additionaly he needs also to enter the answer of a secret question
like:
- colour of your car
- maiden name of your mother
- etc
The set of question would be nice if it is configurable and the user should
be able to select the question independendly the first time he logs on.
Anyone know such a software?
If the software is implemented on a web reverse proxy directly, even better!
Thanks and bye,
Oliver
----== Posted via Newsfeeds.Com - Unlimited-Unrestricted-Secure Usenet News==----
http://www.newsfeeds.com The #1 Newsgroup Service in the World! 120,000+
Newsgroups
----= East and West-Coast Server Farms - Total Privacy via Encryption =----
|
|
Posted by Ludovic Joly on January 11, 2006, 5:03 am
If you were Registered and logged in, you could reply and use other advanced thread options
Hi Oliver
RADIUS offers quite few possibilities, and a software doing what you
would like would probably simply build a composite password from the
two parts (simple password and question). More conceptually, the
authentication scheme of such a solution remains "password": something
you know, and it adds virtually no security.
To enhance authentication security, you need strong authentication,
like two factors authentication that combines two (or more) of the
following: something you know (password), something you have (a
hardware token), something you are (biometrics).
If your need is for a corporate deployment then feel free to contact me
directly as I might find the right strong authentication solution for
your company.
Kind regards
Ludovic Joly
|
| Similar Threads | Posted | | remote access solution with mobile phone / SMS-based authentication? | December 19, 2005, 4:43 am |
| Best RADIUS server | July 29, 2004, 9:25 am |
| DNS based ACLs failing | July 1, 2004, 10:17 am |
| IDS based on neuronal networks | April 19, 2005, 9:46 pm |
| Chicken and egg issue with Cookie based login? | April 6, 2005, 4:39 am |
| Skype Based Remote Desktop & Netmeeting | January 6, 2006, 2:55 am |
| SSL Server authentication, SSL client authentication, SSL connection and SSL session | August 14, 2006, 1:05 pm |
| WEP authentication, why WEP authentication scheme is flawed and how it can be attacked | August 1, 2006, 12:51 pm |
| HPSBUX02074 SSRT051251 - Apache-based Web Server on HP-UX mod_ssl,proxy_http, Remote Execution of Arbitrary Code, Denial of Service (DoS), and Unauthorized Access | November 16, 2005, 7:28 pm |
| HPSBUX02074 SSRT051251 rev.2 - Apache-based Web Server on HP-UX mod_ssl, proxy_http, Remote Execution of Arbitrary Code, Denial of Service (DoS), and Unauthorized Access | March 20, 2006, 9:53 am |
|
XML site map