I'd be interested. I'd also be interested, if possible, in using a generic USB storage device instead of a Yubi stick.
I don't currently have a real need for two-factor authentication but recently experimented with just using a script launched from the $HOME/ssh/authorized_keys file to send a PIN either to another email account or, via email-to-SMS gateway, to my phone. It mostly works, though one can still force the remote sshd to revert to password authentication unless that option is disabled. I'm sure a hardware token is more secure as well as being useful beyond openssh sessions. Jeff _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
