Bug 3349 - Support for PIN pads
Summary: Support for PIN pads
Status: NEW
Alias: None
Product: ThinLinc
Classification: Unclassified
Component: Smart card (show other bugs)
Version: pre-1.0
Hardware: PC All
: P2 Enhancement
Target Milestone: LowPrio
Assignee: Pierre Ossman
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-12-09 11:14 CET by Pierre Ossman
Modified: 2022-10-12 16:34 CEST (History)
0 users

See Also:
Acceptance Criteria:


Attachments

Description Pierre Ossman cendio 2009-12-09 11:14:08 CET
We currently have no special handling for secure PIN entry (aka PIN pads). I've tested and checked that it is still possible to use ThinLinc with them, but the usability is horrible:

 - The client will ask for a PIN, just as usual. Only after the PIN has been entere will the reader switch to secure mode and ask for a PIN though. That means that the user will enter their PIN twice, and no good feedback that they need to enter it on the pad.

 - When doing the second connection to the agent, the PIN will need to be entered again on the pad. Again, there is no feedback from the client that this needs to be done.

Solving the feedback issues shouldn't be that difficult. We just need to make OpenSSH be aware of when a PIN pad is present and report that back to the client so that we can change the messages presented.

The bigger issue is that PIN pads prohibit our kind of cache-based SSO (by design). This means we need to implement bug 2545 to make login to ThinLinc smooth.

Note You need to log in before you can comment on or make changes to this bug.