On Mon, Mar 30, 2009 at 12:57:23PM -0500, Dennis Gilmore wrote:
So doing a liitle looking around I cane across some options that look
interesting, the following options would mean you need to physically have
something to login.
yubikey
http://www.yubico.com/products/yubikey/
It would require a pam module and for us to setup a server for managing keys.
it looks to be fairly low cost. it would implement a 2 facter
authentication.
I've been a big fan of yubikey for a while now. The technology is
secure, the hardware is solid, and the source is open.
Aside from their online docs, this podcast was quite informative was
well:
http://twit.tv/sn143
luke