A USB dongle for one-time passwords
The benefits of OpenKubus include portability and the ability to customize hardware without breaking the bank. The drawback is that the stick and all the servers need to synchronize the serial number. If you need to authenticate against multiple servers, you will need a central server. Tools for managing OpenKubus in larger environments with large numbers of users are still rudimentary.
OpenKubus will not protect you against man-in-the-middle attacks . The service you are calling has to demonstrate authenticity separately. However, the project is an exciting platform for any administrator interested in experimenting.
- "One-Time Passwords" by Udo Seidel, Linux Magazine, November 2008, pg. 22
- USBprog wiring diagram: http://www.embedded-projects.net/usbprog
- Shop for OpenKubus hardware: http://shop.embedded-projects.net
- OpenKubus: http://code.google.com/p/openkubus (in German)
- Installation notes on AVR-GCC: http://www.nongnu.org/avr-libc/user-manual/install_tools.html
- PAM configuration syntax: http://kernel.org/pub/linux/libs/pam/Linux-PAM-html/sag-configuration-file.html
- Wrapper Generator SWIG: http://www.swig.org/
- Man-in-the-middle attacks: http://en.wikipedia.org/wiki/Man-in-the-middle_attack
Powerful man-in-the-middle attack is now targeting online shopping.
Another high-profile coder says the kernel team needs a kinder, gentler culture.
Bug database has a bug of its own that could allow an intruder to create an unauthorized account.
Report focuses federal resources on achieving universal Internet access.
Leading browser makers say “no” to porous encryption algorithm
Report from the X-Force group says attackers are using TOR to hide their crimes
Future Firefox extensions will be compatible with Chrome.
Better read this if you bought your computer before 2011
Users should upgrade to the new version as soon as possible
Xen project announces a privilege escalation problem for Qemu host systems