Home page logo

basics logo Security Basics mailing list archives

Re: How (best) to use web-from entry of an OTP/OPIE password to control a PF-firewall?
From: "Albert T" <albert.t680333 () gmail com>
Date: Tue, 20 Nov 2007 12:51:46 -0800

On 20 Nov 2007 20:01:15 -0000,  <krymson () gmail com> wrote:
Might you be best served Googling "Clientless ssl vpn open source?" Or some other query similar to that. I think 
you'll get more of what you want by pursuing some sort of SSL VPN solution. Maybe an ipsec VPN, if you're running 
systems that have extensive ipsec support (Windows)?

Again, I can presume NOTHING other than a browser for the remote user.

Yes, there are some IPSec/SSL/VPN/etc commercial solutions; rather
expensive overkill and not what I'm asking about.

My remote users do NOT have a certificate with them.  No USB keys can
be relied on.

OTP/OPIE password authentication, all/only via a 'vanilla' web
broswer, and opening a normally closed port  is what I've been asking

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]