[Opendnssec-develop] Re: PIN daemon

Rickard Bellgrim rickard at opendnssec.org
Wed Aug 10 09:23:41 UTC 2011


On Wed, Aug 10, 2011 at 11:09 AM, Rickard Bellgrim
<rickard at opendnssec.org> wrote:
> On Tue, Aug 9, 2011 at 5:06 PM, Rickard Bellgrim <rickard at opendnssec.org> wrote:
>> On Wed, Aug 3, 2011 at 10:01 AM, Rickard Bellgrim
>> <rickard at opendnssec.org> wrote:
>>> We have been talking about a PIN daemon for some time now, and I was
>>> thinking if shared memory would be sufficient?
>>
>> The problem I am seeing now is that getpass() does not work so good
>> when we are working with daemons. How should the user enter a PIN to a
>> background process?
>>
>> The PIN request is part of hsm_open().
>
> Perhaps the daemons should block (within libhsm) until the user has
> entered the PIN using ods-hsmutil?

No, that would not be so good. Because ods-hsmutil also relies on libhsm.



More information about the Opendnssec-develop mailing list