On 27/7/24 09:43, Max Nikulin wrote:
On 23/07/2024 09:16, jeremy ardley wrote:
I use Google Authenticator as an option in pam to secure ssh connections.
[...]
NB. Google Authenticator does not use any Google cloud services. It is
purely a local application on your machine.
Do you mean rfc6238 Time-based One-time Password (TOTP) that is
implemented in a number of applications besides Google Authenticator or
some other protocol?
Yes. it is set up as TOTP on the host.
But the more interesting part is the client application which can do
things like image recognition to read QR codes generate on the server.
I presently use the google client on android but I could easily replace
it with freeOTP with a change to the host plugin.
I read that google uses 80 bit encryption while the standard is at least
128 bit. I'm pretty sure that is not a problem with my use-case.
