On Thu, May 10, 2007 at 07:33:21AM +0300, Alon Bar-Lev wrote:
> > It would be more practical and possibly also more secure to have
> > a proxy that looks like an ssh-agent
>
> What is the difference between implementing properietary proxy
> interface, and allowing openssh to use standard PKCS#11 i
Hello Alon!
On Mittwoch, 9. Mai 2007, Alon Bar-Lev wrote:
> Yes... Some thoughts:
>
> 1. The daemon will expose PKCS#11 interface as protected
> authentication path, so that applications will not require to set PIN.
> This will allow PKCS#11 single sign-on throughout several
> applications.
>
> 2.
On 5/9/07, Peter Stuge <[EMAIL PROTECTED]> wrote:
> > http://alon.barlev.googlepages.com/openssh-pkcs11
>
> Yes, but that's not what I had in mind.
>
> SSH already secures and forwards ssh-agent communication. It would be
> more practical and possibly also more secure to have a proxy that
> looks l
On Wed, May 09, 2007 at 10:53:04PM +0300, Alon Bar-Lev wrote:
> > > 6. Haven't thoughts about slot events yet, don't know if I want
> > > to support these in first version.
> >
> > I think it is important to do so. Better if it takes a bit longer
> > to be released.
>
> Applications should fall-do
On Wednesday 09 May 2007 17:07:37 Douglas E. Engert wrote:
> I see you built the SCA with 0.11.2, are you going to build the SCA
> with 0.11.2 soon?
as soon as I find time. I hope tomorrow (but I had the same hope for days...).
Andreas
___
opensc-devel
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robert Relyea wrote:
> nss/lib/ckfw itself is meant to be a framework to quickly bring up new
> PKCS #11 adapters. It's meant to be separable from NSS, (and in fact has
> no nspr dependencies).
Interesting. I guess it compiles the parts of NSS and NSP
On 5/9/07, Peter Stuge <[EMAIL PROTECTED]> wrote:
> On Wed, May 09, 2007 at 10:33:20PM +0300, Alon Bar-Lev wrote:
> > 6. Haven't thoughts about slot events yet, don't know if I want to
> > support these in first version.
>
> I think it is important to do so. Better if it takes a bit longer to
> be
On Wed, May 09, 2007 at 10:33:20PM +0300, Alon Bar-Lev wrote:
> 6. Haven't thoughts about slot events yet, don't know if I want to
> support these in first version.
I think it is important to do so. Better if it takes a bit longer to
be released.
Otherwise too many will use the version without.
On 5/9/07, Ph. Marek <[EMAIL PROTECTED]> wrote:
> That would be very good! If there's something I can help you with (eg.
> testing), just ask -- I'll try to reserve some time for you.
That's great!
> Do you have any implementation concepts/ideas? Or do you want start them here?
Yes... Some thoug
On 09/05/07, Robert Relyea <[EMAIL PROTECTED]> wrote:
> Ludovic Rousseau wrote:
> > On 13/04/07, Robert Relyea <[EMAIL PROTECTED]> wrote:
> > I can't find the needed file security/pam_ext.h in your patch. I guess
> > you forgot to add --new-file when you used diff :-)
> >
> > Can you send the missi
Ludovic Rousseau wrote:
On 13/04/07, Robert Relyea <[EMAIL PROTECTED]> wrote:
Here's patch installment 2 of 3.
I can't find the needed file security/pam_ext.h in your patch. I guess
you forgot to add --new-file when you used diff :-)
Can you send the missing file?
It's part of pam 0.99.6.2 (s
I see you built the SCA with 0.11.2, are you going to build the SCA
with 0.11.2 soon?
--
Douglas E. Engert <[EMAIL PROTECTED]>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
___
opensc-devel mailin
On 20/04/07, S. Wefel <[EMAIL PROTECTED]> wrote:
> Ludovic Rousseau schrieb:
> > On 04/04/07, Ludovic Rousseau <[EMAIL PROTECTED]> wrote:
> >> I, more or less, use pam-pkcs11. I would really be interested in
> >> integrating your RedHat patches.
> >
> > And I work on the pam_pkcs11 source code righ
On 13/04/07, Robert Relyea <[EMAIL PROTECTED]> wrote:
> Here's patch installment 2 of 3.
I can't find the needed file security/pam_ext.h in your patch. I guess
you forgot to add --new-file when you used diff :-)
Can you send the missing file?
Bye
--
Dr. Ludovic Rousseau
_
Hello Alon!
On Dienstag, 8. Mai 2007, Alon Bar-Lev wrote:
> On 5/8/07, Ph. Marek <[EMAIL PROTECTED]> wrote:
> > I seem to remember having read about a pkcs#11 forwarding driver, which
> > allows to forward pkcs#11 calls eg. over a network - to use any pkcs#11
> > aware application (eg. firefox) wi
15 matches
Mail list logo