2FA

5 risposte [Ultimo contenuto]
delaforce
Offline
Iscritto: 05/18/2014

Any free sotware to use 2FA autentification without mobile phone?
Typical use: amazon, banks and online shops.

Malsasa
Offline
Iscritto: 12/01/2016

I would love to know this too it's really important. Thanks for making
this topic.

jxself
Offline
Iscritto: 09/13/2010

It very much depends on what those places use for 2FA. If it's something like TOTP then look into oathtool: https://www.nongnu.org/oath-toolkit/

Here's an example for SSH:

First install libpam-oath and oathtool.

A seed is needed. The seed should be unique for every user. One way to make a seed: head -10 /dev/urandom | sha512sum | cut -b 1-30

Edit or create /etc/users.oath and put in something like this using the seed from the previous step:

HOTP/T30/6 myusername - d1da273d1e26613289efb82bca8a9b

Edit /etc/ssh/sshd_config and edit or include these values:
ChallengeResponseAuthentication yes
PasswordAuthentication no
UsePAM yes
AuthenticationMethods publickey,keyboard-interactive

Edit /etc/pam.d/sshd
Add the line:
auth required pam_oath.so usersfile=/etc/users.oath window=30 digits=6
Comment out common-auth:
# Standard Un*x authentication.
@include common-auth

And after setting up the various machines you might, for example, run this:

oathtool --totp d1da273d1e26613289efb82bca8a9b

And get your 2FA code:

639420

Ta Da.

davidpgil
Offline
Iscritto: 08/26/2015

Once my job started requiring 2FA with Google, I started using Solokeys,
a pretty inexpensive 2FA dongle.

https://github.com/solokeys/solo

Save Nature
Offline
Iscritto: 07/19/2020

On Fri, 17 Jul 2020 17:30:56 +0200 (CEST)
name at domain wrote:

> Any free sotware to use 2FA autentification without mobile phone?
> Typical use: amazon, banks and online shops.

Keepassxc(password manager) has TOTP, so you can use it for 2FA from
your computer without using your mobile for it.

Keepassxc should be availble in Trisquel 9, I guess(I don't remember
it having it Trisquel 8). But fortunately AppImage is availble. You
can also get it using PPA.

Tarzan
Offline
Iscritto: 06/21/2020

Hi there,

I had the same issue when finding a gui driven solution i got my attention to these :

https://gitlab.gnome.org/World/Authenticator (GPL-3.0 License )

or

https://github.com/paolostivanin/OTPClient (GPL-3.0 License )

i know here are specific apps and games not welcome(or shouldnt be recommended)but as i understood they have these (GPL-3.0 License ) so they should be recommendable. Please correct me if im wrong and pardon just trying to help ^^ because for me its a perfect solution,when avoiding mobile phones with android,ios,etc.

Have a wonderful time mates :D and good luck

Greets