Wed 22 Jul 2009
WordPress Plugin: One-Time Password
Posted by Marcel under Announcements , Plugins[3] Comments
(44 votes, average: 4.34 out of 5)
Loading ...Description
The simple to use One-Time Password plugin enables you to login to your WordPress weblog using passwords which are valid for one session only. One-time passwords prevent stealing of your main WordPress password in less trustworthy environments, like internet cafés, for example by keyloggers. For each login you can choose between using your main password or a one-time password. The one-time password system conforms to RFC 2289 of the Internet Engineering Task Force (IETF).
Version 2.0 of this plugin has a new option to protect administrative actions by one-time passwords. This option is disabled by default and only available when you logged-in with a one-time password. It is possible to define exceptions. The default exceptions are viewing the dashboard, adding a post (but not saving it) and logging out.
Support
If the usage instructions and frequently asked questions don’t help, you can write a comment on the plugin home page.
Screenshots
The login screen displaying a RFC 2289 challenge:
The one-time password list with the requested password:
The OTPGen application on a phone that supports JavaME: (optional)
The window to authorize an administrative action: (optional)
(44 votes, average: 4.34 out of 5) Loading ...
[...] Marcel Bokhorst : One Time Password [...]
Good work…
[...] One time password. In a world were we blog from a coffee shop via unsecured WiFi it is actually a security madness to use our password (which we probably use at other sites as well). A one time password is probably the best solution after installing an SSL for the blog. I wish it could have been integrated with the FTP server. [...]