> I have complete control of how this is implemented. So I am totally open to
> new
> ideas.
>
> Ideally it would be best to have limited impact on the client side, since
> some companies
> I have no control over their systems.
> geoff nordli
Then you will probably find that s/key is not a good option for you. Most PC
FTP clients fail to support s/key in even the most rudimentary way, which is
to at least show the FTP server's "native" text responses, where the s/key
challenge is presented. WS-FTP shows the server responses in a tiny 3-line
window, but doesn't interoperate with s/key aside from allowing you to
copy/paste the challenge into the s/key calculator. Most other PC and Mac FTP
clients fail to even show the server responses, so operation with s/key is all
but impossible using these clients.
If your clients will all be using WS-FTP or a Unix or command line FTP client,
then you should be OK.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
