Librenix  
(Show all SSH articles . . .
)  
Headlines | Linux | Apps | Coding | BSD | Admin | News
Information for Linux System Administration 

Secure SSH with WiKID two factor authentication

Up
vote
Down

SSH offers a highly secure channel for remote administration of servers. However, if you face an audit for regulatory or business requirements, such as Visa/Mastercard PCI, you need to be aware of some potential authentication related short-comings that may cause headaches in an audit. For example:

  • There is no way to control which users have public key authorization
  • There is no way to enforce passphrase complexity (or even be sure that one is being used)
  • There is no way to expire a public key
In this document we are going to demonstrate how to combine two-factor authentication from WiKID with an SSH gateway server with hosted private keys to create a highly secure, auditable and easy to use remote access solution.

 read more | mail this link | score:7502 | -nowen, April 30, 2007
More Sysadmin articles...

Fine Art Online Gallery

admin headlines

Upgrade OpenSUSE 12.2 to 12.3

Virtual Users/Domains with Postfix, Courier, MySQL, SquirrelMail (CentOS 6.3)

Tutorial: Install Nagios 3.4.4 on CentOS 6.3

Tutorial: Automatically add a disclaimer to emails with alterMIME (Postfix on Debian 6)

Tutorial: concrete5 on Nginx on Debian 6/Ubuntu 12.10

OpenDKIM Tutorial: Set up DKIM with Postfix on CentOS

 

Firefox sidebar

Site map

Site info

News feed

Features

Login
(to post)

Search

 
Articles are owned by their authors.   © 2000-2012 Ray Yeargin