Ubuntu QA:
BlogBrainstormPackage status
Log in
Ubuntu QA
The Ubuntu community has contributed 22700 ideas, 138270 comments, 2629576 votes
Idea sandbox Idea sandbox
Popular ideas Popular ideas
Ideas in development Ideas in development
Implemented ideas Implemented ideas
Idea #14947: Support for two factor authentication in GDM

Written by rosv the 29 Oct 08 at 09:03. Category: Security. Related project: Nothing/Others. Status: New
Rationale
Wouldn't it be nice to have support for various types of two factor authentication right at the visual login prompt?

In particular, support for RADIUS access challenge input would provide greater flexibility for Ubuntu login security.

I believe that support for a token device (like RSA securid or one time passwords sent to a mobile phone or something similar) would be a step forward for Ubuntu in the corporate world.

Basically, "all" that needs to be done is to add a text field prompting for additional user input, like a RADIUS access challenge, after the regular user name / password check.

8
votes
up equal down
Solution #1: Auto-generated solution of idea #14947
Written by rosv the 29 Oct 08 at 09:03.
Ubuntu Brainstorm was updated in January 2009. Since the idea #14947 was submitted before this update, its rationale and solution are not separated. Please vote accordingly, and if you have the necessary rights, please separate the rationale from the solution. Thanks!

Propose your solution

Attachments
No attachments.


Duplicates


Comments
Eldmannen wrote on the 29 Oct 08 at 20:26
Yeah, two-factor authentication would be cool.

http://en.wikipedia.org/wiki/Security_token

dino wrote on the 29 Oct 08 at 22:50
You can add much checks to the login as you want and still it adds very little to the overall security. You allways (especally if you got hardware access) work around them. If you encrypt the users data with the key you enter there - that actually adds more overall security.

rosv wrote on the 30 Oct 08 at 09:47
Dino. I agree with you. Two factor authentication using hard ware tokens is not a one size fits all solution to computer security. However, I do believe that it dramatically improves security when it comes to local login access.

Encrypting files and partitions is also a good way improve security and I don't think one of them necessarily has to rule out the other one.

rosv wrote on the 26 Mar 09 at 09:38
I've solved it. Please se my post on http://ubuntuforums.org/showthread.php?p=6959498#post6959498

Two factor authentication is possible using GDM. Wohoo!


Post your comment