TLUG Mailing List

Mailing List Archive

tlug.jp Mailing List tlug archive tlug Mailing List Archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] telnet'ing to home with Java servlet

Date: Tue, 1 Nov 2005 15:57:19 +0900 (JST)

From: "Micheal E Cooper" <network-admin@example.com>

Subject: Re: [tlug] telnet'ing to home with Java servlet

References: <9c414c890510261809u778bc81aq212b7505ccbeb400@example.com><20051028103654.573c1c95@example.com><9c414c890510280539o41f25430x17fb74aea831fcf2@example.com><d8fcc0800510281806x48f387cfi4e855a5a067dea7e@example.com><9c414c890510281932h597330fy470f60b178de1ded@example.com><1130569428.4612.16.camel@example.com><20051031210604.483ce61b.jep200404@example.com><1130813144.5733.10.camel@example.com> <20051031221659.63971911.jep200404@example.com>

User-agent: SquirrelMail/1.4.3a-11.EL3
> One time passwords are vulnerable to man-in-the-middle attacks.

Just to make sure I am getting this right, while one-time passwords
protect you from people grabbing your password as it passes, if you are
giving it to a man-in-the-middle, he or she just takes the password, logs
into the real server, and does damage at will. Right?

Is there a better way, then? To be honest, I thought that one-time,
disposable passwords were pretty cool when I first heard about them.

mec
Follow-Ups:

Re: [tlug] telnet'ing to home with Java servlet
From: Benjamin Fleckenstein

References:

Re: [tlug] SSH'ing to home with Java servlet
From: Jim

Re: [tlug] SSH'ing to home with Java servlet
From: Shawn

Re: [tlug] telnet'ing to home with Java servlet
From: Jim

Prev by Date: Re: [tlug] Occam's Razor for SSH'ing to home

Next by Date: Re: [tlug] Occam's Razor for SSH'ing to home

Previous by thread: Re: [tlug] telnet'ing to home with Java servlet

Next by thread: Re: [tlug] telnet'ing to home with Java servlet

Index(es):

Date

Thread

Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links