Now, to generate the one-time password needed to answer this login
prompt, we use a trusted machine and the `key' program. (There are
versions of the `key' program from DOS and Windows machines, and there
is an S/Key desk accessory for Macintosh computers as well.) The
command-line `key' program takes as its parameters the iteration count
and seed; you can cut-and-paste right from the login prompt starting
at ``key'' to the end of the line. Thus:
$ key 92 hi52030 ) pasted from previous section
Reminder - Do not use this program while logged in via telnet or rlogin.
Enter secret password: ) I typed my secret password
ADEN BED WOLF HAW HOT STUN
And in the other window:
s/key 92 hi52030 ) from previous section
Password:
(turning echo on)
Password:ADEN BED WOLF HAW HOT STUN
Last login: Wed Jun 28 15:31:00 from halloran-eldar.l
[etc.]
This is the easiest mechanism if you have a trusted machine.
There is a Java S/Key key applet,
The Java OTP Calculator,
that you can download and run locally on any Java supporting brower.