Librenix
Headlines | Linux | Apps | Coding | BSD | Admin | News
Information for Linux System Administration 

Secure SSH with WiKID two factor authentication

Up
vote
Down

SSH offers a highly secure channel for remote administration of servers. However, if you face an audit for regulatory or business requirements, such as Visa/Mastercard PCI, you need to be aware of some potential authentication related short-comings that may cause headaches in an audit. For example:

  • There is no way to control which users have public key authorization
  • There is no way to enforce passphrase complexity (or even be sure that one is being used)
  • There is no way to expire a public key
In this document we are going to demonstrate how to combine two-factor authentication from WiKID with an SSH gateway server with hosted private keys to create a highly secure, auditable and easy to use remote access solution.

read more...
mail this link | permapage | score:7827 | -nowen, April 30, 2007

Secure VNC remote access with two-factor authentication

Up
vote
Down

VNC is the most popular remote access solution today. However, it was developed to provide remote access, not to provide secure remote access. Administrators have to add security to VNC by tunneling it through an encrpyted channel such as SSH and adding a layer of authentication. In this article, we will show you how to combine the NoMachine NX server to encrypt VNC and remote X session combined with two-factor authentication from WiKID Systems to create a secure, fast remote access solution. read more...
mail this link | permapage | score:6442 | -nowen, May 23, 2007

Configure OpenVPN with WiKID Strong Authentication

Up
vote
Down

These instructions describe setting up two-factor authentication with WiKID Strong Authentication, which is a commercial/open source two-factor authentication system and OpenVPN, an SSL-encrypted VPN, on a Linux server using the Radius Pluggable Authentication Module.. First, we will configure PAM to use Radius, then we will configure OpenVPN to use PAM and one-time passwords, then we will create a network client on the WiKID server for OpenVPN. We won't go into specifics about installing these services, rather we will focus on configuring them to all work together. read more...
mail this link | permapage | score:5875 | -nowen, May 4, 2007
Abstract Art Prints on Canvas

Recent headlines

Quantum basic RDO setup (grizzly) to have original LAN as external on CentOS 6.4

Using ngx_pagespeed With nginx On Debian Jessie/testing

Can we all agree with the Linux Deepin way of innovation?

Running ProcessWire on Nginx (Debian 7 / Ubuntu 13.04)

How to install Lekture on Fedora 19 KDE

10 basic examples of linux netstat command

Setup Dashboard and VNC console on Two Node Controller+Compute Neutron GRE+OVS+Gluster Fedora 20 Cluster

How to install S3QL from source on Fedora 19

SteamBox: Sabayons version of the Steam Machine

Gluster 3.4.2 on Two Node Controller+Compute Neutron GRE+OVS Fedora 20 Cluster

Step By Step Ubuntu 13.04 (Raring Ringtail) LAMP Server Setup

 

Firefox sidebar

Site map

Site info

News feed

Features

Login
(to post)

Search

 
Articles are owned by their authors.   © 2000-2012 Ray Yeargin