|
|
|
|
|
|
by ComputerGuru
181 days ago
|
|
|
The obvious solution is an ssh-agent integration that caches the touch-derived key for up to N hours or until the workstation is locked (as a proxy for user-is-away event), AND integrates with secure desktop (à la UAC) to securely show a software-only confirmation prompt/dialog for subsequent pushes within the timeout window. (Tbh, a secure-desktop-integrated confirmation dialog would solve most issues that needed a hardware key to begin with.) |
|
|