How I won the battle against strong password

[drag]

Well if your using Linux you can use USB drive to authenticate you logging into your workstation.

Here is a plugin for x509 token-based authentication from mobile devices.

Intro
-----

This module provides password-less login authentication on local consoles based on X509
certificates and private keys stored on some personal data holders like USB Sticks, Bluetooth
mobile phones and etc...

Currently supported two methods of authentication:
1. To provide user certificate and private key in some auto-mountable location using supermount
or automount. It can be usb stick, floppy disk, CD disk, SD card or may be more exotic device.
2. To provide user certificate and private key truth rfcomm bluetooth connection.

Why
---

I'm to lazy to remember passwords. Ok if You are loged there no problems, you can use ssh keys,
you can use x509 authentication with telnet, ftp, http. Even you can use different programms
which will cache password for You. This module eleminates last place you require your password.

You could set it up so that users need to have this to login + a passphrase. You can use it (I suppose) for authentication to network resources and remote ssh sessions and that sort of thing.

I was thinking about using this then I can eliminate password altogether.

Note that scanning for OpenSSH servers and trying to guess passwords have become a very popular passtime for many freaks.

 

[JackBurton]

Originally posted by: Shenkoa
SPAM!

Its whats for dinner.

Yep. WHENEVER someone's first post is "look at this cool software I found," it should be deemed as spam, locked and the post should be deleted. I don't go to a brand new forum and say, "hey, look at this software I found." That's something ONLY a spammer will do. No ifs, ands or buts.

Now if you don't mind, I'll stick with our RSA token solution. It's just a tad bit more flexible and secure.

 

[kamper]

Originally posted by: drag
whatever. There is already was to do this sort of thing without relying on propriatory software. (smart cards, usb keys and that sort of thing.)

If a person is forced to spam forums trying to sell software it's safe to assume that that software is CRAP and should be treated as such.

Especially with something like this, a person would be a fool to trust buying security products from a company that suffers from a lack of ethics as indicated by spamming on websites. If a person wants to advertise on Anandtech there are perfectly legal and ethically acceptable was of doing it (like paying for it like everybody else).

This "Dekart" company has now lost the ability to sell any peice of software/hardware/service to me for as long as I can remember to avoid that name.

And when you've been flamed by drag you know you've done something dumb :laugh:

Good job drag, I don't think I've ever seen you say anything that negative

 

[timswim78]

Sulley9 for elite! Just Kidding

Anyway, what is the best way to secure the login on an XP/2K machine?

 

[stash]

If you really want to secure the SAM database on a 2000/XP machine, use a syskey password stored on a floppy disk. The SAM is encrypted by default with a system generated key that is stored on the local system. For high security, you should create your own syskey password that is a minimum of 12 characters long, and store the key on a floppy disk.

The system will not completely boot until you insert the floppy containing the encryption key. Much more cumbersome, but very secure.

See http://support.microsoft.com/default.aspx?kbid=310105 for details.

 

[n0cmonkey]

Originally posted by: JackBurton

Originally posted by: Shenkoa
SPAM!

Its whats for dinner.

Yep. WHENEVER someone's first post is "look at this cool software I found," it should be deemed as spam, locked and the post should be deleted. I don't go to a brand new forum and say, "hey, look at this software I found." That's something ONLY a spammer will do. No ifs, ands or buts.

Now if you don't mind, I'll stick with our RSA token solution. It's just a tad bit more flexible and secure.

I've almost made posts like that. It turned out the software wasn't so cool (or I shouldn't have trusted my friend with the software ).

 

[Cy6nUsX1]

qwerty, I got nothin worth stealing....lol

 

[ITJunkie]

Originally posted by: drag
whatever. There is already was to do this sort of thing without relying on propriatory software. (smart cards, usb keys and that sort of thing.)

If a person is forced to spam forums trying to sell software it's safe to assume that that software is CRAP and should be treated as such.

Especially with something like this, a person would be a fool to trust buying security products from a company that suffers from a lack of ethics as indicated by spamming on websites. If a person wants to advertise on Anandtech there are perfectly legal and ethically acceptable was of doing it (like paying for it like everybody else).

This "Dekart" company has now lost the ability to sell any peice of software/hardware/service to me for as long as I can remember to avoid that name.

HA...I was thinking the same d@mn thing. :beer: