Is there a way to create a rule that will ask an external application for a true or false value before allowing a new connection to be established? It seems the vendor(s) method is to code for applications (pam, apache, x, etc) which IMO narrows the scope of what two-factor could be protecting and complicating the matter of protecting remote services in general. My idea is to simply not allow the incoming connection via the firewall until a two-factored connection has been validated. This way I am not restricted to what few two factor agents the vendor(s) have. thanks - To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
