Mac Fingerprint Reader Store Password For Ssh
- Mac Fingerprint Reader Store Password For Ssh Key
- Google Play Store Password For All Downloads
- Reader Store Account
- Ssh Software For Mac
I am using PuTTY to access my server via SSH. Due to the complexity of my private key's password, however, I've decided to consider using other methods of authentication, such as biometrics, more specifically fingerprints.
The problem is that the server cannot store a hash of the fingerprint, because the fingerprint can come with slight variations that would give a completely different hash. And if your fingerprint is compromised (either by taking it on a object you have touched or directly from the server) you can hardly change it - ok you can use up to ten fingers. KeyTouch is a $0.99 app that is available to download on the App Store right now, and by itself it doesn’t really do a great deal. Pair it with the freely downloadable companion app on a Mac though, and magic starts to happen before your very eyes. BIO-key EcoID Fingerprint Reader - Tested & Qualified by Microsoft for Windows Hello - Eliminate Passwords on Windows 7/8.1/10 - Includes OmniPass Online Password Vault with Purchase. Using fingerprint reader for encryption or ssh login? Currently, I use fingerprint reader to do sudo, so that I don't need to type in password. And I store my passwords, such as those for web logins. Related to 1, use fingerprint reader to decrypt the ssh key > > when adding it to ssh-agent. > > Exactly same as in 1). KeyTouch is a $0.99 app that is available to download on the App Store right now, and by itself it doesn’t really do a great deal. Pair it with the freely downloadable companion app on a Mac though, and magic starts to happen before your very eyes. To be clear, there is no actual fingerprint stored by or on Apple devices; or most modern fingerprint based biometric systems. Rather, an algorithm creates a mathematical representation of the fingerprint (points on a print) expressed a long string of numbers/letters (a hash of sorts.).
I have looked up how to do such a thing, but it seems that nobody has ever figured out how to do it before. Since I am using Windows 7, there is some integration between the fingerprint scanner's driver and Windows itself (Windows accepts fingerprints as an official method of authentication).
Using fingerprint reader for encryption or ssh login? And I store my passwords, such as those for web logins, in an encrypted file, using a password only for this occasion to decrypt the password. > > > 3) Related to 1, use fingerprint reader to decrypt the ssh key > > when adding it to ssh-agent. > > Exactly same as in 1).
Mac Fingerprint Reader Store Password For Ssh Key
What I would like to do is unlock my laptop's SSH private key by supplying my fingerprint, and the unlocked private key can then be passed on to the server via SSH to log me in (as usual).
The fingerprint program I am using allows me to save passwords for sites, but it is an abandoned program from AuthenTec. It is also the only program that my fingerprint driver (also from AuthenTec) supports.
How can I complete such an undertaking? Or is it simply not worth the effort?
oldmud0oldmud0Google Play Store Password For All Downloads
1 Answer
Reader Store Account
Ssh Software For Mac
This sounds like a really interesting experiment. All the parts are available, although I don't know of anyone who has stitched them together. First of all, I would use the x.509 biometric consortium's approach.
Effectively what you'll be doing is creating a private key which is encrypted using a key generated from your fingerprint; then using that key, once decrypted, as a standard x.509 private key. This means that you won't need to modify OpenSSH so much as provide a custom method of providing the private key to it.
Unfortunately, out of the box, OpenSSH doesn't support x.509 authentication. However Roumen Petrov has fixed that here.
I've done both things independently and they work a charm - I've not tried glueing them together though. I suspect, as you allude, it may not be worth the effort.