VPN recommendations?
Ben Scott
dragonhawk at gmail.com
Tue Jul 3 15:59:14 EDT 2007
On 7/3/07, Bill Freeman <f at ke1g.mv.com> wrote:
> A two factor scheme might help in this kind of scenario.
Multi-factor authentication is definitely the way to go for best results.
My ultimate goal is a certificate stored on the laptop (ciphered
with the logon password), plus OTPs from a hardware gadget, like an
RSA SecurID key fob. Someday...
> http://www.wikidsystems.net/howtos/openvpn_two_factor
I'm not sure if WIKID is really what most would call "two factor".
It seems to be a linear chain (need X to gain Y, need Y to gain Z),
rather than a parallel authentication scheme (need X and Y to gain Z).
But everything I know about WIKID I got from reading the blurb on
their homepage just now, so I wouldn't exactly call my analysis
"comprehensive".... <grin>
> I presume (but don't know) that it's possible with PPTP.
Well, my direct experience is limited, but from what I've read, PPTP
is yet another modular standard, so "it depends". When a lot of
people say "PPTP", they mean "Whatever's included on a stock Win98
box". That flavor only does passwords. But I've read that it's also
possible to use certificates and such, but that isn't something the
Microsoft implementation does.
-- Ben
More information about the gnhlug-discuss
mailing list