> What's wrong with adding a simple challenge-response protocol for FIDO2/U2F USB drives? Or a TOTP popup if you don't have a physical security key?
Our application send mails on behalf of our customers. This is done in an on-prem background service running on one of their servers wherever that might be.
So, anything interactive is a no-go. And installing a physical USB key is probably a no-go for most customers, especially those who have their servers hosted by a provider.
Our application send mails on behalf of our customers. This is done in an on-prem background service running on one of their servers wherever that might be.
So, anything interactive is a no-go. And installing a physical USB key is probably a no-go for most customers, especially those who have their servers hosted by a provider.