[COLUG] One Time Passwords
Duane
duane at cacert.org
Thu Jul 27 14:26:25 EDT 2006
I've spent a little more time this morning working out what I did before,
and have come up with a 1 page document on how to setup one time passwords
as a stand alone authentication method with PAM.
I had two goals when I was originally playing with this, firstly to secure
my laptop, and the way I ended up setting up PAM allows me to use OTPs for
everything from GDM login, to authenticating against the screen saver.
Secondly it allows me to use one time passwords instead of root passwords,
and as I have dealt extensively with colocated servers, giving out a one
time password to remote hands instead of actually root passwords makes me
feel a lot better.
I've aimed this document primarily at people using Debian/Ubuntu since
that's what I use, but as per the demonstration last night it was fairly
trivial to get up and running with Centos as well.
http://wiki.cacert.org/wiki/One_Time_Passwords
PS Please update the page with any distro specific notes that people
encounter, especially with differences in pam configurations.
More information about the colug432
mailing list