I'm sure someone is probably working on this, but what about a service that gene... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

nicholassmith on Aug 7, 2012 | parent | context | favorite | on: Please turn on two-factor authentication

I'm sure someone is probably working on this, but what about a service that generates a one off seed for the second stage of auth, married with either a desktop or smartphone app for generating it for the user. Lose your phone/laptop/PC simply cancel it remotely so it stops generating, same as you would if you lost your bank card.

I'm sure I'm missing something, but I'm not sure what.

EDIT: I'll let the post stand but I need to read more clearly, I thought Google Authenticator was purely for Google services.

lreeves on Aug 7, 2012 | [–]

You can actually authenticate against the GA product from any system - hook it into PAM for sshd access, use it for another factor in OpenVPN, or even just wire it into Apache:

http://code.google.com/p/google-authenticator-apache-module/

alfiejohn_ on Aug 7, 2012 | [–]

Already on the market - YubiKey.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact