[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-panel-devel
Subject:    Re: Network transparancy api review.
From:       Fabrizio Montesi <famontesi () gmail ! com>
Date:       2009-06-23 17:42:55
Message-ID: e20638690906231042t10f71642v24471221de4018ed () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


On Tue, Jun 23, 2009 at 7:05 PM, Rob Scheepmaker <
r.scheepmaker@student.utwente.nl> wrote:

> Hello everybody,
>
> [cut]
>

Hi Rob,
just a quick comment about identifying remote machines. What about combining
public key authentication with the bluetooth pairing method (the host writes
a PIN, the client is asked for the PIN, the two PINs must match)?
This way if the user is too lazy to check the public key we reduce greatly
the attacker's possibilities. Using this approach we'd have to face the fact
that a lazy user could write "1234" as a PIN, too: the host side UI for
writing the PIN should warn the user that things like "1234" are not such a
good idea.


Bye,
Fabrizio.

[Attachment #5 (text/html)]

<div class="gmail_quote">On Tue, Jun 23, 2009 at 7:05 PM, Rob Scheepmaker <span \
dir="ltr">&lt;<a href="mailto:r.scheepmaker@student.utwente.nl">r.scheepmaker@student.utwente.nl</a>&gt;</span> \
wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, \
204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"> Hello everybody,<br>
<br>
[cut] <br></blockquote><div><br>Hi Rob,<br>just a quick comment about identifying \
remote machines. What about combining public key authentication with the bluetooth \
pairing method (the host writes a PIN, the client is asked for the PIN, the two PINs \
must match)?<br> This way if the user is too lazy to check the public key we reduce \
greatly the attacker&#39;s possibilities. Using this approach we&#39;d have to face \
the fact that a lazy user could write &quot;1234&quot; as a PIN, too: the host side \
UI for writing the PIN should warn the user that things like &quot;1234&quot; are not \
such a good idea.<br> </div></div><br><br>Bye,<br>Fabrizio.<br>



_______________________________________________
Plasma-devel mailing list
Plasma-devel@kde.org
https://mail.kde.org/mailman/listinfo/plasma-devel


[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic