URL:
<http://savannah.nongnu.org/support/?108936>
Summary: Emergency codes
Project: OATH Toolkit
Submitted by: None
Submitted on: jeu. 10 déc. 2015 18:30:15 UTC
Category: None
Priority: 5 - Normal
Severity: 3 - Normal
Status: None
Privacy: Public
Assigned to: None
Originator Email: [email protected]
Open/Closed: Open
Discussion Lock: Any
Operating System: None
_______________________________________________________
Details:
Add the ability to use emergency scratch codes in the PAM module, to allow
access in case of counter desynchronization or time configuration error, such
as google-authenticator does. See
https://wiki.archlinux.org/index.php/Google_Authenticator#Generating_a_secret_key_file
for UX example. The codes could be stored in the file the same way as the
usersfile. The module would delete used codes. The codes could be
user-dependent or not. It would be ideal if the PAM module could warn the user
if few (1 or 2) emergency codes are still available.
_______________________________________________________
Reply to this item at:
<http://savannah.nongnu.org/support/?108936>
_______________________________________________
Message posté via/par Savannah
http://savannah.nongnu.org/
