Tag Archive for 'SSH'

How To Setup Yubikey SSH On Fedora

Here is a short ten minute video tutorial and howto directions. This is how to setup Yubikey authentication on Red Hat Fedora with PAM authentication. You can configure SSH to restrict access to your Linux box so that only Yubikeys you authorize can gain access. Therefore restricting access to anyone who does not.


# build libyubikey
wget http://yubico-c.googlecode.com/files/libyubikey-1.1.tar.gz
tar -zxf libyubikey-1.1.tar.gz
cd libyubikey-1.1
./configure
make
make install
cd ../

# build pam yubikey
wget http://yubico-pam.googlecode.com/files/pam_yubico-1.8.tar.gz
tar -zxf pam_yubico-1.8.tar.gz
cd pam_yubico-1.8
./configure
make
make install
cp libs/pam_yubico.so /lib/security/

# Setup keyfile
mkdir /root/.yubico/
vi /root/.yubico/authorized_yubikeys
root:{12char key}

# SSHD Config
PasswordAuthentication yes
ChallengeResponseAuthentication yes
UsePAM yes

# Pam module
vi /etc/pam.d/sshd
auth sufficient pam_yubico.so id=16 debug

Handheld SSH – What is missing from my toolkit

Since I am primarily a *nix kinda guy. I can pretty much work remotely as long as I have three things; a computer, internet connectivity and an ssh/telnet client. Often times I find myself on the road and I am unable to connect to any of my servers via ssh or to a telnet server until I reach a place where I have all three of those items. I found a company which offers an SSH/telent client for handheld devices. They also offer other software including an ssh server for Windows, a feature rich telnet server and a full SSH client suite.