[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gnupg-users
Subject:    Re: PAM authentication with gpg or ssh key
From:       Jerome BENOIT <sphericaltriangle () rezozer ! net>
Date:       2015-09-30 3:00:24
Message-ID: 560B5048.70602 () rezozer ! net
[Download RAW message or body]

Hi !

concerning PAM authentification with SSH,
you may want to give a try to libpam-ssh

Jerome

On 30/09/15 02:17, NIIBE Yutaka wrote:
> Hello,
> 
> Yesterday, I included my answer to your question to a different
> thread.  I should have replied to this post.
> 
> I think that your question is relevant to GnuPG community.
> 
> On 09/29/2015 02:06 AM, Schlacta, Christ wrote:
>> Therefore, I'm looking for a way to have PAM query the ssh-agent
>> remotely, or optionally locally in rare instances if possible, for
>> authentication.
> 
> My answer was:
> =================================
> For authentication of sudo on remote machine, I think that we can use
> pam_ssh_agent [0] together with GnuPG, if we can configure correctly.
> I don't have any experiences, though.  It would be good if we can also
> do similar thing directly by gpg-agent remote access.
> 
> [0] pam_ssh_agent: http://pamsshagentauth.sourceforge.net/
> =================================
> 
> I think that it's good if a user can consolidate his private key
> management under GnuPG (possibly with OpenPGPcard compatible).
> Besides, it would be good if OpenPGPcard can have more authentication
> keys (for different purposes), too.
> 
> Perhaps, if there are some demands, I should write U2F module using
> gpg-agent (and revive Scute, accordingly).  I believe that this is a
> way to go, for those users who want to consolidate things cleanly.
> 

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]