The solution that I am intimately familiar with doesn't use the MSGina as you describe. In addition, the domain password is not stored locally, but on an authentication server. It is encrypted as you say. In addition, the domain password can be controlled by the authentication server and is randomly generated 256 characters long with a strong mix of cases, symbols, etc.
-----Original Message----- From: Burton M. Strauss III [mailto:[EMAIL PROTECTED]] Sent: Monday, April 01, 2002 3:16 PM To: [EMAIL PROTECTED] Cc: Nina V. Levitin; James Kelty Subject: RE: Physical Access Control I've posted on this specific hardware device before... yes, it's cool, but the implementation leaves a lot to be desired. What it does is to substitute a new gina.dll for msgina.dll. This new gina captures the fingerprint, compares it and then retrieves your stored domain password from the hard drive (security/encryption of same unspecified) and invokes the original msgina.dll with that value. Risks left to the imagination... -----Burton -----Original Message----- From: Nina V. Levitin [mailto:[EMAIL PROTECTED]] Sent: Friday, March 29, 2002 3:46 PM To: James Kelty; [EMAIL PROTECTED] Subject: RE: Physical Access Control Seimen's makes a mouse that uses finger print identification. There is a program that use the mouse and does network and application sign on. I have tested it in a lab but do not user it. Pretty cool toys but I have no idea how well it works on a day to day basis. So check out Seimen's website for their biometric mouse. It should get you started. -Kit >>-----Original Message----- >>From: James Kelty [mailto:[EMAIL PROTECTED]] >>Sent: Wednesday, March 27, 2002 3:07 PM >>To: [EMAIL PROTECTED] >>Subject: Physical Access Control >> >> >>Hello! >> >>I am looking for a good vendor of fingerprint physical access control >>solutions, but I don't have the foggiest idea of where to >>start. I have done >>a few google.com searches, but I was hoping that some of you >>may have some >>suggestions. Thanks in advance! >> >>-James >> >> >>James Kelty >>Sr. Unix Systems Administrator >>The Ashland Agency >>541.488.0801 >>[EMAIL PROTECTED] >> >>
