1993-10-17 - RE: Passwords (fwd)

Header Data

From: anonymous@phoenix.Princeton.EDU (anonymousmous)
To: Arthur Chandler <cypherpunks@toad.com
Message Hash: 233107f733895b305d60bf45beb92daf375f722943fa393793351c7228b82c73
Message ID: <9310170043.AA25680@Princeton.EDU>
Reply To: N/A
UTC Datetime: 1993-10-17 02:30:18 UTC
Raw Date: Sat, 16 Oct 93 19:30:18 PDT

Raw message

From: anonymous@phoenix.Princeton.EDU (anonymousmous)
Date: Sat, 16 Oct 93 19:30:18 PDT
To: Arthur Chandler <cypherpunks@toad.com
Subject: RE: Passwords (fwd)
Message-ID: <9310170043.AA25680@Princeton.EDU>
MIME-Version: 1.0
Content-Type: text/plain


>
>Unsolved problems (left as an exercise to the reader):
>
>(1) Securely changing Soandso's password in the presence of eavesdroppers.
>        (very hard without a pubic-key crypto system)
>(2) Managing the plaintext password on the client system (which is required
>        here) so that it isn't compromised. (rather easy)
>
>        Jon

Why not just have them use PGP? Pass out public keys. To get in, sign a
random string, different every time. 







Thread