Mailing List Archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [tlug] telnet'ing to home with Java servlet



> One time passwords are vulnerable to man-in-the-middle attacks.

Just to make sure I am getting this right, while one-time passwords
protect you from people grabbing your password as it passes, if you are
giving it to a man-in-the-middle, he or she just takes the password, logs
into the real server, and does damage at will. Right?

Is there a better way, then? To be honest, I thought that one-time,
disposable passwords were pretty cool when I first heard about them.

mec




Home | Main Index | Thread Index

Home Page Mailing List Linux and Japan TLUG Members Links