search for: keystok

On Sun, 3 Jul 2016, Stephen Harris wrote: > On Sun, Jul 03, 2016 at 09:19:43PM -0500, Bruce F Bading wrote: > > One, the Google Authenticator (OTP authentication). > > On its own, this is not 2FA. It's single factor ("something you > have"). > > A combination of Google Authenticator _and_ password is 2FA. This is > easy to do with PAM. Agreed >

Powball gives every indication of starting up correctly and all, but there's a problem... Before it'll start, it wants to be fed a keystroke. Typing at the console has no effect, nor does typing with the focus on it's window. Is there any way to pass it a character via the command line invocation or something?

...-1 was first written by Tatu Ylonen. I'd still like to see "ssh-keygen" require a command line flag to allow blank passwords, instead of the current default behavior. But when I've suggested it among users, they've explained their firm rejection of it in impolite terms. > Keystoke loggers can log the keystrokes to unlock the key and capture it in > band on the client. > RSA and OTP generated by google authenticator w/password authentication can > occur out of band and since enforceable on the server side are much more > difficult to breach. > > Again, I wa...

I''m a fairly visual person, and I have a piece of paper with many boxes and arrows with labels like "has many" and "belongs to" for my database models. It''s messy, but it works. What I keep looking for--weeks, actually, I''m certain it''s out there, but I haven''t hit on the right set of Google query terms :)--is something that will