[Gllug] Does the YubiKey USB security token actually work in Linux?

Robert McKay robert at mckay.com
Fri Jun 24 15:00:03 UTC 2011


On Fri, Jun 24, 2011 at 3:18 PM, Richard W.M. Jones <rich at annexia.org>wrote:

> On Fri, Jun 24, 2011 at 02:05:24PM +0100, Robert McKay wrote:
> > Hmm.. how does this actually work then? It seems like possibly it
> requires
> > you to hand over authentication of your servers to yubikey.. like.. you
> > install a pam module that will do a web service request to
> >
> > http://api.yubico.com/wsapi/2.0/verify?id=%d&otp=%s
> >
> >
> > in order to verify the one time password? That doesn't seem great.. I
> guess
> > maybe you can run your own web service as well?
>
> It definitely does not involve any handing over of authentication to
> yubico, otherwise Fedora would not have gone for this.
>

http://www.yubico.com/validation-server

It seems there are a few implementations of the web service that you can
install yourself.

Rob
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20110624/0360d77c/attachment.html>
-------------- next part --------------
--
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug


More information about the GLLUG mailing list