Authentification

Yubikey

https://www.yubico.com

Please read and make yourself familiar with OTP and the concept or Two Factor Authentification.

Personalisation Tool

You can use a ppa to install the required software in Ubuntu:

sudo apt-get install yubikey-personalization yubikey-personalization-gui yubikey-neo-manager yubioath-desktop ykneomgr

SSH

Generally: only use key based authentification with your ssh-webserver login!

vim /etc/ssh/sshd_config

[...]
PermitRootLogin without-password
StrictModes yes

RSAAuthentication yes
PubkeyAuthentication yes

IgnoreRhosts yes
RhostsRSAAuthentication no
HostbasedAuthentication no

PermitEmptyPasswords no
ChallengeResponseAuthentication no
PasswordAuthentication no # <<<< !!!!

X11Forwarding no
UseLogin no

UsePAM no  <<<< !!!!

Authentification

From Blue-IT.org Wiki

Revision as of 07:16, 19 August 2015 by Apos (talk | contribs) (→‎Personalisation Tool)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Yubikey

Personalisation Tool

SSH

Authentification

From Blue-IT.org Wiki

Revision as of 07:16, 19 August 2015 by Apos (talk | contribs) (→‎Personalisation Tool)(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Yubikey

Personalisation Tool

SSH

Revision as of 07:16, 19 August 2015 by Apos (talk | contribs) (→‎Personalisation Tool)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)