[Novalug] Google 2-factor auth

Chris Garrity swnpnt@gmail.com
Thu Aug 23 09:40:40 EDT 2012


TOTP, timebased one-time-password

http://code.google.com/p/google-authenticator/source/browse/libpam/README

I assumed it needed network.

On Aug 22, 2012, at 10:56 PM, Jeremy Hoel <jthoel@gmail.com> wrote:

> I don't think an internet connection is required to work. Once it
> installs and generates a code for Google Auth on the phone then I
> believe it can all work offline.
> 
> On Wed, Aug 22, 2012 at 10:53 PM, Chuck Frain <linux@chuckfrain.net> wrote:
>> I don't know how the Google PAM auth module works, but my first thought
>> is what happens when the server cannot reach the internet to log in? Is
>> there anything on that box that you can do without during that time?
>> 
>> On Wed, 22 Aug 2012, Christophe wrote:
>> 
>>> Is there any reason I shouldn't feel good about using Google's PAM authentication module to implement a preauth verification code on my gentoo ssh server? I use the iphone app to get my 6-digit auth code. I already had iptables block all ports except 22, with denyhosts sharing data, and a sentence length password. But, now I feel extra special.
>>> _______________________________________________
>>> Novalug mailing list
>>> Novalug@calypso.tux.org
>>> http://calypso.tux.org/mailman/listinfo/novalug
>> 
>> --
>> Chuck Frain
>> GPG Key: B2420431
>> http://www.chuckfrain.net
>> _______________________________________________
>> Novalug mailing list
>> Novalug@calypso.tux.org
>> http://calypso.tux.org/mailman/listinfo/novalug




More information about the Novalug mailing list