Thursday, September 6, 2007

OPIE one time pad passwords for ssh

HowTo

apt-get install libpam-opie opie-server opie-client

/etc/pam.d/ssh:
#@include common-auth
auth sufficient pam_opie.so
auth sufficient pam_unix.so nullok_secure
auth require pam_deny.so

/etc/ssh/sshd_config:
#ChallengeResponseAuthentication no

over secure terminal:
opiepasswd -c -f

create password list:
opiekey -n 20 430 ph0650 | tac > list

No comments: