Re: [rlug] Two-factor SSH authentication via Google

2011/6/25 dizzy di...@roedu.net: On 6/21/11 8:10 AM, Petru Ratiu wrote: On Tue, Jun 21, 2011 at 18:06, Quamisqua...@gmail.com  wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? E aceeasi problema ca cu

Re: [rlug] Two-factor SSH authentication via Google

On 6/25/11 4:37 AM, Petru Ratiu wrote: 2011/6/25 dizzydi...@roedu.net: On 6/21/11 8:10 AM, Petru Ratiu wrote: On Tue, Jun 21, 2011 at 18:06, Quamisqua...@gmail.comwrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si

Re: [rlug] Two-factor SSH authentication via Google

On 6/21/11 3:36 AM, manuel lonely wolf wolfshant wrote: pentru cei care inca nu au aflat http://m.techrepublic.com/blog/opensource/two-factor-ssh-authentication-via-google-secures-linux-logins/2607 Il folosesc (pe contul public/personal) de cateva luni, e pretty awesome! Ma face sa-mi doresc

Re: [rlug] Two-factor SSH authentication via Google

On 6/21/11 8:06 AM, Quamis wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? Cand iti faci setup la two factor te _obliga_ sa iti configureze 2 metode de backup: 1. un numar de telefon la care sa poti primi

Re: [rlug] Two-factor SSH authentication via Google

On 6/21/11 8:10 AM, Petru Ratiu wrote: On Tue, Jun 21, 2011 at 18:06, Quamisqua...@gmail.com wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? E aceeasi problema ca cu token clasic (pe de alta parte e

Re: [rlug] Two-factor SSH authentication via Google

On Ma, 21 iun 11, 18:09:02, Sorin Gherghe wrote: On Tue, Jun 21, 2011 at 08:06, Quamis qua...@gmail.com wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? Nu. Exista acele scratch codes care tin loc de

Re: [rlug] Two-factor SSH authentication via Google

On Tue, Jun 21, 2011 at 1:36 PM, manuel lonely wolf wolfshant wo...@prolinux.ro wrote: pentru cei care inca nu au aflat http://m.techrepublic.com/blog/opensource/two-factor-ssh-authentication-via-google-secures-linux-logins/2607 Hello, 1. nu mi-e foarte clar daca depinzi de un serviciu

Re: [rlug] Two-factor SSH authentication via Google

2011/6/22 Andrei POPESCU andreimpope...@gmail.com On Ma, 21 iun 11, 18:09:02, Sorin Gherghe wrote: On Tue, Jun 21, 2011 at 08:06, Quamis qua...@gmail.com wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la

Re: [rlug] Two-factor SSH authentication via Google

2011/6/22 Florin Popovici florin.popov...@gmail.com Hello, 1. nu mi-e foarte clar daca depinzi de un serviciu de la Google sau tot sistemul e offline fata de cloud Este offline, codurile temporare (de 30 secunde) se genereaza offline be baza unui secret key. Teoretic nu se poate face

[rlug] Two-factor SSH authentication via Google

pentru cei care inca nu au aflat http://m.techrepublic.com/blog/opensource/two-factor-ssh-authentication-via-google-secures-linux-logins/2607 ___ RLUG mailing list RLUG@lists.lug.ro http://lists.lug.ro/mailman/listinfo/rlug

Re: [rlug] Two-factor SSH authentication via Google

Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? On Tue, Jun 21, 2011 at 1:36 PM, manuel lonely wolf wolfshant wo...@prolinux.ro wrote: pentru cei care inca nu au aflat

Re: [rlug] Two-factor SSH authentication via Google

On 06/21/2011 06:06 PM, Quamis wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? nu, inseamna ca si altii il capata, simultan cu telefonul si numarul tau. ___ RLUG

Re: [rlug] Two-factor SSH authentication via Google

On Tue, Jun 21, 2011 at 18:06, Quamis qua...@gmail.com wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? E aceeasi problema ca cu token clasic (pe de alta parte e chiar mai simplu, pentru ca poti face rost de

Re: [rlug] Two-factor SSH authentication via Google

nici cu token-urile nu imi e rusine http://arstechnica.com/security/news/2011/06/rsa-finally-comes-clean-securid-is-compromised.ars 2011/6/22 Petru Ratiu rpe...@gmail.com On Tue, Jun 21, 2011 at 18:06, Quamis qua...@gmail.com wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat

Re: [rlug] Two-factor SSH authentication via Google

On Tue, Jun 21, 2011 at 08:06, Quamis qua...@gmail.com wrote: Pare interesant, dar nu inteleg ce se intampla daca ma imbat si uit telefonul in bar... inseamna ca pierd si accesul la servere? Nu. Exista acele scratch codes care tin loc de codul generat de aplicatie. Un scratch-code se poate

Re: [rlug] Two-factor SSH authentication via Google

2011/6/21 Petru Ratiu rpe...@gmail.com Mie mi se pare cute, dar parca as prefera sa nu trimit auth logs la google. Din cate stiu nu se trimit loguri la google. Pe baza acelui secret key aplicatia de pe telefon (si serverul) iti genereaza codurile offline, nu se face nimic online.

Re: [rlug] Two-factor SSH authentication via Google

2011/6/22 Sorin Mihailescu proso...@gmail.com: nici cu token-urile nu imi e rusine http://arstechnica.com/security/news/2011/06/rsa-finally-comes-clean-securid-is-compromised.ars La RSA se pare ca au fost furate foarte multe seed-uri. Din ce zice lumea o sa inlocuiasca RSA la clienti tokenurile