Librenix  
(Show all VPN articles . . .
)  
Headlines | Linux | Apps | Coding | BSD | Admin | News
Information for Linux System Administration 

Secure an SSL VPN with one-time Passcodes and Mutual Authentication

Up
vote
Down

SSL-based VPNs were designed to eliminate the need for complex configurations on the user's PC. Unfortunately, that was before the dangers of public WiFi networks and tougher regulatory requirements came into being. Thanks to WiFi, many attacks that were difficult are now quite simple. In particular, a man-in-the-middle attack can intercept SSL-encrypted traffic, rendering SSL-based VPNs useless - even if it is protected by a typical one-time password system. The man-in-the-middle can easily feed the one-time password into the SSL-based VPN within the alloted time.
 read more | mail this link | score:7103 | -falko, July 2, 2007
More Sysadmin articles...

Buy Abstract Art Canvas Prints

admin headlines

Add WiKID Two-Factor Authentication to OpenVPN Community On Ubuntu 13.04

Monitoring Linux and Unix Server Temperatures with Opsview

Book Review: The Artists Guide to GIMP, 2nd Ed.

Installing OpenVZ on CentOS 5.7

Run phpMyAdmin on Nginx on Debian 6/Ubuntu 11.04

Install Apache-Solr

 

Firefox sidebar

Site map

Site info

News feed

Features

Login
(to post)

Search

 
Articles are owned by their authors.   © 2000-2012 Ray Yeargin