RE: Something Stronger than a Passphrase? (UNCLASSIFIED)

To: "Jim Basney" <jbasney@ncsa.uiuc.edu>
Subject: RE: Something Stronger than a Passphrase? (UNCLASSIFIED)
From: "Friedrichs, Paul D CTR DISA PEO-IAN" <Paul.Friedrichs.ctr@disa.mil>
Date: Thu, 12 Apr 2007 10:09:04 -0400
Cc: <myproxy-users@ncsa.uiuc.edu>
Content-class: urn:content-classes:message
Content-transfer-encoding: 8bit
Content-type: text/plain; charset="us-ascii"
In-reply-to: <18685.1176327860@ncsa.uiuc.edu>
References: <A1D78FBB8CE9CC4A9A12DEE15DD8D189EB1989@laccadive.disanet.disa-u.mil> <16809.1176236279@ncsa.uiuc.edu> <A1D78FBB8CE9CC4A9A12DEE15DD8D189EB1990@laccadive.disanet.disa-u.mil> <18685.1176327860@ncsa.uiuc.edu>
Sender: owner-myproxy-users@ncsa.uiuc.edu
Thread-index: Acd8grmwAHqNslzVQ4CKKCCYmxe2nQAiG3KA
Thread-topic: Something Stronger than a Passphrase? (UNCLASSIFIED)

Classification:  UNCLASSIFIED 
Caveats: NONE

 

> -----Original Message-----
> From: Jim Basney [mailto:jbasney@ncsa.uiuc.edu] 
> Sent: Wednesday, April 11, 2007 5:44 PM
> To: Friedrichs, Paul D CTR DISA PEO-IAN
> Cc: myproxy-users@ncsa.uiuc.edu
> Subject: Re: Something Stronger than a Passphrase? (UNCLASSIFIED)
...
> > I get the impression my "myproxy-init
> > --retrievable_by_cert dn --no_passphrase" would force me to 
> put a new 
> > credential every time I want to use a new application proxy.
> 
> True.
> 
> > Should the
> > user, above, not include "--no_passphrase," not ever give the 
> > passphrase to prospective proxies and only use the passphrase in 
> > subsequent commands to modify who can retrieve proxy certs?
> 
> The ability to modify a credential's policy after it's stored 
> on the server as you describe would be useful, but it's not 
> implemented.

Can there be multiple "--retrievable_by_cert dn" in the myproxy-init?

Thanks,
Classification:  UNCLASSIFIED 
Caveats: NONE

Follow-Ups:
- Re: Something Stronger than a Passphrase? (UNCLASSIFIED)
  - From: Jim Basney <jbasney@ncsa.uiuc.edu>

References:
- Something Stronger than a Passphrase? (UNCLASSIFIED)
  - From: "Friedrichs, Paul D CTR DISA PEO-IAN" <Paul.Friedrichs.ctr@disa.mil>
- Re: Something Stronger than a Passphrase? (UNCLASSIFIED)
  - From: Jim Basney <jbasney@ncsa.uiuc.edu>
- RE: Something Stronger than a Passphrase? (UNCLASSIFIED)
  - From: "Friedrichs, Paul D CTR DISA PEO-IAN" <Paul.Friedrichs.ctr@disa.mil>
- Re: Something Stronger than a Passphrase? (UNCLASSIFIED)
  - From: Jim Basney <jbasney@ncsa.uiuc.edu>

Prev by Date: Re: Something Stronger than a Passphrase? (UNCLASSIFIED)
Next by Date: Least Privilege & Special Powers of Attorney (UNCLASSIFIED)
Previous by thread: Re: Something Stronger than a Passphrase? (UNCLASSIFIED)
Next by thread: Re: Something Stronger than a Passphrase? (UNCLASSIFIED)

Other Mailing lists | Author Index | Date Index | Subject Index | Thread Index