Google Authenticator for multi-factor authentication
Posted Dec 8, 2011 0:28 UTC (Thu) by dwmw2
In reply to: Google Authenticator for multi-factor authentication
Parent article: Google Authenticator for multi-factor authentication
It appears you can't use google-authenticator with one's SSH key, which is unfortunate. I would like this a lot better if I could do OTP and still use my SSH key.
I have that working locally. See OpenSSH bug #983
You really also want to fix GA bug #51 if you want to use Google Authenticator for real. Storing the key in ~/.google_authenticator, so that any code running as your user can read or change it, is entirely stupid. Imagine if your system password was stored in ~/.passwd instead of /etc/shadow where you can't even read it!
Unfortunately, this involves patches to two of the least responsive upstream projects I've ever had to deal with ☹
to post comments)