The government is shut down, what do you expect :-)
⛵
On Oct 3, 2013, at 8:51 AM, Howdy Dood h0wdyd3...@gmail.com wrote:
Hello,
I have Fedora 19 on two machines.
I use libcoolkey to use a Common Access Card's certificates to access my
webmail at http://www.foo.bar.gov
However,
On May 19, 2011, at 6:05 AM, Jean-Michel Pouré - GOOZE wrote:
Le jeudi 19 mai 2011 à 16:03 +0530, sreenivas dhulipalla a écrit :
I bought Aladdin e-token pro 72k(e-token) with Digital certificate
from CA. I have installed Alladin e-token driver on Linux i was
installed successfully. But i
On May 7, 2011, at 4:32 PM, s.ferey wrote:
Some years ago, working with (contact) cards slower than 115 kpbs
was yet a bad idea, nowadays I'll hardly imagine to work with
(contact) card slower than 307 (or 614) kbps; so obviously working
at 10752bps shall not exist, if the fault comes
On Mar 18, 2011, at 2:31 PM, Ludovic Rousseau wrote:
2011/3/18 Martin Preuss aquaman...@gmx.de:
Hi,
On Freitag 18 März 2011, Ludovic Rousseau wrote:
[...]
Hotplug is the business of pcsc-lite, not the reader driver.
Or you have a special need?
[...]
You driver should not depend on the way
on a Sun Ray server by the
server
admin or we may include it in a future patch. The delivery method for
a new
smartcard config file has more to do with business decisions than it
does
with technical ones.
mike
On 3/11/2010 12:44 PM, Michael Bender wrote:
Yes, that's what we do on Sun
Yes, that's what we do on Sun Ray (the Oracle thin client). That is
the only
approach that I could determine would work - each card or card family
has
unique methods to be identified and to extract a unique ID from the
card so
the rules for identifying a card and extracting a unique id need
On Sep 12, 2009, at 3:11 AM, Sihan Goi wrote:
On Sat, Sep 12, 2009 at 2:43 AM, Michael StJohns
mstjo...@comcast.net wrote:
At 01:50 PM 9/11/2009, Nagy Gabor wrote:
2009. 09. 11, péntek keltezéssel 13.37-kor Michael StJohns ezt Ã
rta:
The answer is it depends - on the actual type of card
On Apr 10, 2009, at 6:37 AM, Ludovic Rousseau wrote:
Hello,
Since I have too many CCID readers (140) in different lists I decided
to organize the information a bit.
I also wanted to be able to compare the different readers according to
the characteristics they provide in their CCID
On Feb 11, 2009, at 4:40 AM, Ludovic Rousseau wrote:
Use: ./configure --disable-libhal. pcscd will then do a polling
using libusb to detect readers insertion/removal.
Do you see that HAL is going away and DeviceKit is taking it's place?
mike
___
On Feb 11, 2009, at 3:59 AM, Alexander Griesser wrote:
Back in time, some months ago, we had the first inquiry about
supporting
smartcard readers on these devices that will be used for a single sign
on solution to a citrix application farm.
Have you (or anyone) noticed a problem with the
On Jan 14, 2009, at 11:32 PM, lion wrote:
http://www.nagravision.com/
It should be a pay-tv card. One of the more secret cards.
I don't think you can do anything with this card (except watch
TV). In
general, the game is to create faked pay-tv cards not try to use a
real one.
Yes,
On Jan 15, 2009, at 12:26 AM, Ludovic Rousseau wrote:
2009/1/15 lion yjfp...@163.com:
I think I know more about these problem.
TA2 is 0x81, So it's Specific mode and have the ability to change
mode through hot reset.
But, Fi Di != Fd Dd, so even if changed to Negotiate mode, the PTS
On Jan 13, 2009, at 5:30 PM, lion wrote:
Thanks again for your informations.
I have a last thing want to be confirmed that the commands defined
in ISO7816-4 are not a standard?
All commands are card dependent ? (Although sometimes different
types may have the same commands set).
There
On Jan 14, 2009, at 5:11 PM, s.ferey wrote:
Michael Bender a écrit :
[...]
The root cause of all this mess is because none of the smartcard
manufacturers were mature enough to want to work *together*
when the technology was being developed decades ago
that's unfair incorrect.
ISO 7816-3
On Jan 12, 2009, at 5:36 PM, lion wrote:
Thanks a lot for your detail information.
I want to find out informations on the card just in order to find
out the command set of the card.
I don't know the commands is ISO7816 based or card producer
dependent ?
eg. I find out the SELECT FILE
On Jan 12, 2009, at 12:43 AM, lion wrote:
Hi, All
I am wirting a smartcard driver, the ATR is like below.
ATR: TS is 3b
T0 is 6c
TB1 is 0
TC1 is 2
history char is : 36 61 86 38 4b 8c 13 4 62 3 59 8a
Then,how can
On May 12, 2008, at 11:31 PM, Ludovic Rousseau wrote:
On Tue, May 13, 2008 at 1:19 AM, Michael Bender
[EMAIL PROTECTED] wrote:
Anyone doing any development on a PC/SC-lite v2.0 stack?
What specific part do you need from the PC/SC v2 specification?
Nothing specifically, I was just
Anyone doing any development on a PC/SC-lite v2.0 stack?
thanks,
mike
___
Muscle mailing list
Muscle@lists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
Hi,
Has anyone worked with a Gemalto .NET card without the .NET
framework?
I am trying to use the card at the APDU level and from what I've been
reading,
the card only responds to two APDUs and those are really designed to
transport
the Microsoft .NET remoting protocol over the wire. I
prakash ns wrote:
With reference to my problem with pcsc.
The value of the receive length parameter in the SCardTransmit was
much less then that I receive.
It wasn't a problem with memory corruption as i have taken care of
using malloc n freeing the memory.
Glad you got it working.
Your
prakash ns wrote:
As i have said before...
...and as people have said before, it looks like you have memory
corruption in your code. This isn't really a smartcard or PC/SC-lite
related issue.
Why is it that i don't get an error if i declare an unused variable
that is no way related to my
Odin,
Ok I understand, but that confuses me a little, on my cards it says:
370-4328-03
39173
and I have googled and i've been findind that no applet can be loaded to
payflex card, and I did load the SolarisAuthApplet into this card. am I
getting confused or this is really a payflex card?
Karsten Ohme wrote:
Odin Ifrit schrieb:
Ok I understand, but that confuses me a little, on my cards it says:
370-4328-03
39173
and I have googled and i've been findind that no applet can be loaded
to payflex card, and I did load the SolarisAuthApplet into this card.
am I getting confused or
Corcoran David wrote:
FYI ... I've removed our friend Igor from the list for the recent SPAMMING.
Darn, I was just about to ask him for a book recommendation on SPAMming ;-)
mike
Thanks,
Dave
On Oct 10, 2007, at 2:57 PM, Igor Medeiros wrote:
Just a friendly reminder that I invited
igormedeiros wrote:
I just joined Shelfari to connect with other book lovers. Come see the
books I love and see if we have any in common. Then pick my next book so
I can keep on reading.
Click below to join my group of friends on Shelfari!
Cool! I just joined SPAMfari so that I could hook
Shawn Willden wrote:
On Friday 21 September 2007 01:10:38 pm Douglas E. Engert wrote:
Not the ones I have seen. The assumption is the user of the card has
physical control over the reader, and is using the machine in front of him.
For authentication, yes. But, as I said, authentication would
Andreas Jellinghaus wrote:
On Tuesday 01 May 2007 21:14:26 Martin Preuss wrote:
For CTAPI drivers there is also another problem that should be addressed in
the next step: I think it would be best to have a system
group/user chipcard (or whatever name is feasible) analogous to the
groups disk,
Isn't it broken to have install the PCSC include files in the PCSC
subdir and then to have them #include other PCSC include files but
omit the PCSC part of the path?
I think the whole PCSC/ include subdir issue came about when DaveC was
getting PC/SC-lite to work on MacOS-X. I think that
Hi Albert,
On a Sun Ray terminal connected to a Sun Fire Server (SPARC version),
we've found that neither internal smart card reader nor an external usb
ccid one[1] are listed when using smart card apps (like opensc-tool or
pcsctest).
Yes, that's correct.
On Sun server we've installed
Ludovic Rousseau wrote:
On 30/01/07, Stef Hoeben [EMAIL PROTECTED] wrote:
Note: there's 10th string (at least with us): PIN bloqueado.
Good to know.
I added the translation for the other languages. I now have
fr: PIN bloque
de: PIN blockiert
es: PIN bloqueado
it: PIN ostruito
pt: PIN
Ludovic Rousseau wrote:
On 18/01/07, Andreas Schwier [EMAIL PROTECTED] wrote:
ECO5000 card reader. In just 700 lines of source [...]
The ccid/src/openct/proto-t1.c file I use in my CCID driver [1] is
also 700 lines of code.
The Sun Ray T=1 protocol stack that we wrote and which is part
You know all of this discussion of the merits of T=0 and T=1
would be interesting if we were still in the era of 4-bit
COPS processors running at 100kHz, but today we've got so much
power in both the reader and the card that keeping these
annoying protocols alive is just a big PITA for everyone
Peter Tomlinson wrote:
As for interoperability failure, rigorous
adherence to the standard (where, as in my branching contribution to
this thread, it helps a great deal if you derive the state diagram and
use appropriate software development techniques) in both card and
terminal, plus a
jackie wong wrote:
Any advantage of T=1 protocol compare to T=0 protocol [...]
It makes the Germans happy since they don't have to use
a French protocol :-)
mike
___
Muscle mailing list
Muscle@lists.musclecard.com
[EMAIL PROTECTED] wrote:
T1 is not completely specified? being intended as merely an intellectual
exercise for HDLC students, when trying to send 256 bytes down a 2 wire
in as complex a manner as possible? :-)
The people that designed both T=0 and T=1 need to be taken to the
woodshed and
Hi Ludovic,
BTW, none of this work is meant to provide a mechanism for PC/SC-lite
to work across a network boundary, i.e. between two machines on the
network. All of this is restricted to the local machine only. Getting
something to work securely over a network is a much bigger challenge,
and
Jesse I Pollard - CONTRACTOR wrote:
Michael Bender wrote:
Sure, but the user/administrator need to fix whatever configuration
is allowing something like ssh to grab :0 - I don't think that this
is a common use case.
You can't prevent it. If port 6000 is not being used, then any user
Jesse I Pollard - CONTRACTOR wrote:
Michael Bender wrote:
That scheme introduces another layer of administration and
configuration - Kerberos - that requires the site to deploy
Kerberos. We don't want to enforce any requirement like that,
since requiring Kerberos or PKI certs or any
Jesse I Pollard - CONTRACTOR wrote:
It can still be a spoof.
The account may have been penetrated externally by a trojan,
The user at the console ends up loosing the display because
his account has been taken over by some external means...
Don't forget this one:
The user might
Ludovic Rousseau wrote:
On 26/10/06, Michael Bender [EMAIL PROTECTED] wrote:
Do you need to have different drivers for different zones
or DTUs?
Yes, we want to be able to give each instance of pcscd its own
set of ifd handlers, so that, for example, if an instance of pcscd
is running
Jesse I Pollard - CONTRACTOR wrote:
On Fri, 20 Oct 2006, Paul Klissner wrote:
Here's a link to an improved diagram:
http://www.freemyimage.com/ims/pic.php?u=1500BLfhmi=15663
That helps. And the diagram does omit how the xdpy# is generated to
even be available to ifd handler. This is the
Shawn Willden wrote:
On Thursday 26 October 2006 01:07, Michael Bender wrote:
$DISPLAY is not used as the sole security key, we used trusted data
(the UID of the caller, and, in a Solaris Zones/TX environment, the
zone information) and the access control policy, implemented in the
Sun Ray PAM
Jesse I Pollard wrote:
(about 50,000,000,000,000 lines of text)
Paul Klissner wrote:
(another 50,000,000,000,000 lines of text)
Geeze guys! I go away for a weekend to Tahoe and you guys write
War and Peace on the MUSCLE list :-).
I'll read everything that was written but it will take
Ludovic Rousseau wrote:
I think it is better to use IFDHcontrol(). At least the communication
is more explicit.
I agree.
Note that you can use IFDHGetCapabilities(...,
SCARD_ATTR_VENDOR_IFD_TYPE, ...) (or another similar tag) to check
that the IFD will understand the IFDHcontrol() request.
Paul Klissner wrote:
Ludovic Rousseau wrote:
Why do you have: The IFD handler plugin directory location
specified in argv[]?
The current thinking is to pass in a base directory
into argv[] where pcscd will find it's other configuration
files, such as reader.conf, and what, by default,
Ludovic Rousseau wrote:
Michael Bender wrote:
My question on this was who controls the error/status return code
name space of PC/SC-lite? Is that us, or is it the PC/SC standards
body?
The winscard error codes (SCARD_E_foobar names) are defined in
Interoperability Specification for ICCs
Jesse I Pollard - CONTRACTOR wrote:
Paul Klissner wrote:
The believe now is we can pass the Xdpy# to the IFD handler safely
using putenv via a single environment variable, since there is a
single pcscd per Sun Ray session/X server.
Thus, for any given pcscd daemon, there will only be one
Jesse I Pollard wrote:
Michael Bender wrote:
Jesse I Pollard wrote:
Hmmm... and how would you determine if the display is invalid?
We're adding PAM support to pcscd [...]
Seems rather special purpose and self limited. but ok.
Why do you say that? Do you think that access control
Shawn,
On Thursday 19 October 2006 17:54, Michael Bender wrote:
There might be other credentials that would be important in making
this decision and which could be passed up from libpcsclite.so, got
any suggestions as to what else might be interesting? Or perhaps
we could make it more opaque
Ludovic Rousseau wrote:
Checking for $DISPLAY in pcsc-lite is a bad idea:
1. PC/SC API has nothing to do with X11
Well, yes and no. Strictly speaking the API has nothing to do with
X however if you look at practical applications of a multi-user
system, using the value of the X display is a
Douglas E. Engert wrote:
I would go with whatever uname returns.
Yes, this is the way it's done in a lot of our Makefiles
as well (although, not *all* our Makefiles :-(). I would
recommend that we use SunOS, i.e. the output of uname -s:
$ uname -s
SunOS
mike
Again the the chain of autoconf - configure ... is making trouble.
I am beginning to suspect that the whole autoconf/configure mess
is a just a cruel joke that is being played on the community :-).
mike
___
Muscle mailing list
Hi,
Does anyone know of or have an ATR decoder that takes an ATR
and decomposes into it's constituent parts?
thanks,
mike
___
Muscle mailing list
Muscle@lists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
Peter Williams wrote:
I found it educational to run the code a simple cardedge in the
debugger/simulator. It makes you understand what the JavaCard framework
and the javacard API is doing for us all, when we run the musclecard
applet. Allow about 30 mins to get going, and another 30 mins to
Serge Koganovitsch wrote:
OCF : Open Card Framework (http://www.opencard.org)
Are you using it just for APDU pass through, or are you using
any of it's advanced features such as Card Services?
mike
--
Michael Bender
Serge Koganovitsch wrote:
On Thursday 10 March 2005 09:57, Michael Bender wrote:
Serge Koganovitsch wrote:
OCF : Open Card Framework (http://www.opencard.org)
Are you using it just for APDU pass through, or are you using
any of it's advanced features such as Card Services?
Only APDU pass through
Anders Rundgren wrote:
You are absolutely right! The question is then: Will it happen?
How and why? That is of course impossible to know at this
stage but I can imagine that there will be operators that will
market untangled subscriptions. Actually the whole phone
market is in a giant
Scott Guthery wrote:
1) The telecoms -- including Telia I''ll wager -- regularly download
SIM applets with Cardholder PIN authorization so not only is there
no user in the loop but the operators can read and send back to
themselves whatever you put on your phone or in your SIM without
you ever
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14 Network Circle Tel: x.31807
Menlo Park, Ca. 94025
Mailstop: UMPK14-260MD: VPN/IMAP
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14 Network Circle Tel: x.31807
Menlo Park, Ca. 94025
Mailstop: UMPK14-260MD: VPN/IMAP
reason. Anyone know why they
would decide to not include e-mail addresses?
mike
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14 Network
for that as well.
Other than that, all of the standard MUSCLE stuff such as PAM
and PKCS#11 modules work OK on Sun Ray.
mike
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc
Peter Tomlinson wrote:
It would be great if a developer would implement the eURI concept [1].
Do you think that the big card issuers (banks, governments, etc...) will
ever allow something like this?
mike
--
Michael
, we've only been working on that problem since 1978 or so.
/CYNIC MODE
mike
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14 Network Circle
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14 Network Circle Tel: x.31807
Menlo Park, Ca. 94025
Mailstop: UMPK14-260MD: VPN/IMAP
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14 Network Circle Tel: x.31807
Menlo Park, Ca. 94025
Mailstop: UMPK14-260MD: VPN/IMAP
Never make assumptions
CCID works just fine for me.
Thanks everyone - I got the rpm for the bundle.
mike
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14
Hi,
I am looking for the driver for the SCM SCR331 reader. Anyone know
where I can find a copy of that?
thanks,
mike
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc
, or is your assumption for the
general computer-based smartcard area?
thanks!
mike
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14
the
overall price down through competetion.
It's also good to realize that just saying but I can load Linux
on it! doesn't mean that you control whatever the it is.
mike
--
Michael Bender[EMAIL
community always gets
so bent out of shape when the issue of threading comes up.
mike
--
Michael Bender E-Mail: [EMAIL PROTECTED]
Sun Microsystems, Inc. Tel: 831-401-9510
14
Ludovic Rousseau wrote:
Le jeudi 04 septembre 2003 à 00:11:24, Michael Bender a écrit:
But why aren't drivers multi-threaded by default rather than
playing a game with asking them if they are and then doing one
thing if they say yes and another if they say no?
I don't know why the drivers
72 matches
Mail list logo