Displaying 20 results from an estimated 64 matches for "yubikey".
2020 Jun 26
14
[Bug 3188] New: Problems creating a second ecdsa-sk key for a second Yubikey
https://bugzilla.mindrot.org/show_bug.cgi?id=3188
Bug ID: 3188
Summary: Problems creating a second ecdsa-sk key for a second
Yubikey
Product: Portable OpenSSH
Version: 8.3p1
Hardware: Other
OS: Linux
Status: NEW
Severity: normal
Priority: P5
Component: ssh-keygen
Assignee: unassigned-bugs at mindrot.org
Reporter: David at...
2020 Jul 10
3
OpenSSH not requesting PIN code for YubiKey
I set up the YubiKey with OpenSSH 8.2 (Ubuntu client and server) and it
works. However, it does not do PIN enforcement at SSH login. It only
requests the PIN during the set-up process (when the key is being
generated). Is that the way it's supposed to work?
Frank
2019 Oct 01
2
Centos 8: Multiple bugs with email/calendar
...i try to create an event i get the error
"Failed to create an event in the calendar ?CalDAV : Calendar?"
"Cannot create calendar object: Failed to put data: HTTP error code 400
(Bad Request)"
2.I tried installing evolution from flatpak 3.34
Calendar works fine! BUT cant use my yubikey to read my encrypted emails :-(
For some reason flatpak seems unable to work with smartcards.
Had the same issue with keepassxc and yubikey
3.My third attempt was to use thunderbird from flatpak.
I installed thunderbird through flatpak to see if i could overcome the
flatpak yubikey problem.
Thunde...
2014 Jul 29
0
PAM and YubiKeys
Hi List,
I am trying to get authentication to Dovecot with a Yubikey OTP.
I have the PAM modules installed and can successfully authenticate to
ssh with the Yubikey, so I am confident that the network level and
Yubikey configuration is correct. I can also authenticate to Dovecot via
PAM using a plain password, however when I try to use the Yubikey
authenticatio...
2020 Feb 18
2
Resident keys?
...oticed that I can enter pretty much anything at the PIN prompt
>> it gives me, and it doesn?t return an error or decrement the number of
>> available PIN retries when I view the key?s status.
>>
>> I?m doing these tests against OpenSSH portable HEAD on a Mac with a
>> Yubikey 5 NFC (connected via USB).
>>
>> Any thoughts on what I might be doing wrong?
>
> You can try running "ssh-keygen -Kvvv" to see more detail on what is
> going wrong, but I suspect the problem is that your key's firmware
> has incomplete resident key support....
2020 Feb 18
2
Resident keys?
...ssh-add (without loading any keys).
I also noticed that I can enter pretty much anything at the PIN prompt it gives me, and it doesn?t return an error or decrement the number of available PIN retries when I view the key?s status.
I?m doing these tests against OpenSSH portable HEAD on a Mac with a Yubikey 5 NFC (connected via USB).
Any thoughts on what I might be doing wrong?
--
Ron Frederick
ronf at timeheart.net
2018 Sep 17
7
add keys and certificate to forwarded agent on remote host
Apologies if this post is inappropriate to this list; please redirect me
if so.
Our team uses ssh extensively for server access and maintenance
(Debian). An issue is acting as root when operating, for example, over
ansible and keeping a record of who performed the actions, something ssh
certificates solves well.
The problem is then to automate certificate issuance since it would be
pretty
2020 Jul 19
2
OpenSSH not requesting touch on FIDO keys (was: OpenSSH not requesting PIN code for YubiKey)
On Mon, Jul 13, 2020 at 01:34:37PM +1000, Damien Miller wrote:
> On Fri, 10 Jul 2020, Frank Sharkey wrote:
>
> > I set up the YubiKey with OpenSSH 8.2 (Ubuntu client and server) and it
> > works. However, it does not do PIN enforcement at SSH login. It only
> > requests the PIN during the set-up process (when the key is being
> > generated). Is that the way it's supposed to work?
>
> Assuming you are...
2017 Jan 10
4
Missing Dependency python-yubico
...rror:
Error: Package: fedora-packager-0.6.0.1-1.el6.noarch (epel)
Requires: python-yubico
<SNIP>
[root at peach ~]# yum install python-yubico
<SNIP>
No package python-yubico available.
Do you suppose that maybe this is a typo where python-yubico was typed
instead of python-yubikey? When I google for python-yubico Google
suggests python-yubikey instead. But maybe not! RPM Search turns up
python-yubico packages for Fedora 2[234] for x86_64, and CentOS 7.3 for
x86_64 and finds no hits for python-yubikey. Maybe the fedora-packager
group only works on CentOS 7?
I'm so co...
2018 Dec 10
0
LDAP Account Manager 6.6.RC1 with YubiKey support and new import/export tool
LDAP Account Manager (LAM) 6.6.RC1 - December 10th, 2018
========================================================
LAM is a web frontend for managing accounts stored in an LDAP directory.
Announcement:
-------------
You can now manage your YubiKey IDs inside LAM. The old import/export in
tree view was rewritten and moved to tools menu. LAM Pro users can
adjust self service background color easily. There are also new cron
jobs for account expiration. Bind DLZ and Windows got some improvements.
This is a test release. Please report any bugs t...
2018 Dec 28
0
LDAP Account Manager 6.6 with YubiKey support and new import/export tool
LDAP Account Manager (LAM) 6.6 - December 28th, 2018
====================================================
LAM is a web frontend for managing accounts stored in an LDAP directory.
Announcement:
-------------
You can now manage your YubiKey IDs inside LAM. The old import/export in
tree view was rewritten and moved to tools menu. LAM Pro users can
adjust self service background color easily. There are also new cron
jobs for account expiration. Bind DLZ and Windows got some improvements.
Full changelog:
https://www.ldap-account-manag...
2019 Mar 15
0
LDAP Account Manager 6.7.RC1 with YubiKey 2FA and extended Bind DLZ support
LDAP Account Manager (LAM) 6.7.RC1 - March 15th, 2019
=====================================================
LAM is a web frontend for managing accounts stored in an LDAP directory.
Announcement:
-------------
YubiKey server is supported as 2-factor authentication provider for LAM
login. The bind DLZ module supports DNAME and XFR records. LAM is also
compatible with PHP 7.3 and can log to a remote syslog server. In
addition, multiple fields were added to self service and you can
configure its base URL for email...
2019 Mar 25
0
LDAP Account Manager 6.7 with YubiKey 2FA and extended Bind DLZ support
LDAP Account Manager (LAM) 6.7 - March 25th, 2019
=================================================
LAM is a web frontend for managing accounts stored in an LDAP directory.
Announcement:
-------------
YubiKey server is supported as 2-factor authentication provider for LAM
login. The bind DLZ module supports DNAME and XFR records. LAM is also
compatible with PHP 7.3 and can log to a remote syslog server. In
addition, multiple fields were added to self service and you can
configure its base URL for email...
2020 Jul 20
2
OpenSSH not requesting touch on FIDO keys (was: OpenSSH not requesting PIN code for YubiKey)
On Mon, Jul 20, 2020 at 09:27:16AM +1000, Damien Miller wrote:
> On Sun, 19 Jul 2020, Domenico Andreoli wrote:
>
> > On Mon, Jul 13, 2020 at 01:34:37PM +1000, Damien Miller wrote:
> > > On Fri, 10 Jul 2020, Frank Sharkey wrote:
> > >
> > > > I set up the YubiKey with OpenSSH 8.2 (Ubuntu client and server) and it
> > > > works. However, it does not do PIN enforcement at SSH login. It only
> > > > requests the PIN during the set-up process (when the key is being
> > > > generated). Is that the way it's supposed to wor...
2018 Sep 18
3
add keys and certificate to forwarded agent on remote host
On 18/09/18, Tim Jones (b631093f-779b-4d67-9ffe-5f6d5b1d3f8a at protonmail.ch) wrote:
...
> So issue your users with Yubikeys. You can enforce the Yubikey so it
> requires the user to enter a PIN *and* touch the Yubikey. This means
> there's an incredibly high degree of confidence that it was the user
> who performed the actiion (i.e. two-factor authentication of physical
> Yubikey and PIN, plus anti-ke...
2017 Jan 10
1
Missing Dependency python-yubico
...Requires: python-yubico
>> <SNIP>
>> [root at peach ~]# yum install python-yubico
>> <SNIP>
>> No package python-yubico available.
>>
>>
>> Do you suppose that maybe this is a typo where python-yubico was typed
>> instead of python-yubikey? When I google for python-yubico Google
>> suggests python-yubikey instead. But maybe not! RPM Search turns up
>> python-yubico packages for Fedora 2[234] for x86_64, and CentOS 7.3 for
>> x86_64 and finds no hits for python-yubikey. Maybe the fedora-packager
>> group on...
2019 Oct 01
0
Centos 8: Multiple bugs with email/calendar
...he authentication that evolution sent. We would need to
know
1. what the calendar server you are trying to use
2. what the configuration and how you authenticate
3. what the error on the server side is.
> 2.I tried installing evolution from flatpak 3.34
> Calendar works fine! BUT cant use my yubikey to read my encrypted emails :-(
> For some reason flatpak seems unable to work with smartcards.
> Had the same issue with keepassxc and yubikey
>
Flatpacks are sandboxes to make sure that the rest of your account is
secure from each other https://xkcd.com/1200/ . You have to configure
wha...
2015 Nov 24
2
Problem with gpg-agent and yubikey since openssh v6.8p1
Hi,
i'm unsure if the problem we encounter is a bug in openssh or in gnupg.
But as everything was working with openssh 6.7p1 and earlier i guess
that there where at least some changes in openssh that leads to the
problem.
You can read the latest discussion about the problem here:
https://www.mail-archive.com/gnupg-users%40gnupg.org/msg29421.html
https://www.mail-archive.com/gnupg-users
2015 Nov 30
2
Problem with gpg-agent and yubikey since openssh v6.8p1
Hi Damien,
thanks for you answer.
Here is the output of ssh -vvv for both versions:
http://paste.ubuntu.com/13576087/
http://paste.ubuntu.com/13576243/
If you need any more info let me know.
Regards
the2nd
On 2015-11-29 12:14, Damien Miller wrote:
> On Tue, 24 Nov 2015, the2nd at otpme.org wrote:
>
>> Hi,
>>
>> i'm unsure if the problem we encounter is a bug in
2019 Oct 01
1
Centos 8: Multiple bugs with email/calendar
...nt. We would need to
> know
> 1. what the calendar server you are trying to use
> 2. what the configuration and how you authenticate
> 3. what the error on the server side is.
>
> > 2.I tried installing evolution from flatpak 3.34
> > Calendar works fine! BUT cant use my yubikey to read my encrypted
> > emails :-(
> > For some reason flatpak seems unable to work with smartcards.
> > Had the same issue with keepassxc and yubikey
> >
>
> Flatpacks are sandboxes to make sure that the rest of your account is
> secure from each other https://x...