pam-duress
Duress
pam-duress | Duress | |
---|---|---|
18 | 9 | |
1,316 | 309 | |
- | - | |
1.5 | 0.0 | |
almost 1 year ago | over 1 year ago | |
C | Kotlin | |
GNU Lesser General Public License v3.0 only | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pam-duress
- Delete files upon entering a certain password?
-
French Supreme court: Refusing to provide your phone password is a crime.
On Linux, there’s pam-duress: https://github.com/nuvious/pam-duress
-
vault timeout options
Multi-step timeout would be a good alternative, especially for mobile. For desktop, I have this awesome PAM set up to remove everything associated with my regular user account.
-
Quick Tip: Enable Touch ID for Sudo
It's actually quite simple and readily available with PAM duress [0] (at least on Linux, I'm not sure about PAM on Mac). It was also discussed here already [1]. Still, you should consider that doing so might not work in your favor.
[0] https://github.com/nuvious/pam-duress
[1] https://news.ycombinator.com/item?id=28267975
-
Help with pam, specifically pam_duress
# Copyright 1999-2022 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 EAPI=8 inherit pam toolchain-funcs VER_COMMIT="04e607f9ab674c8dbbf27ea8bb59158178a72f69" DESCRIPTION="A PAM module enabling special 'duress' passwords that will execute arbitrary scripts" HOMEPAGE="https://github.com/nuvious/pam-duress" SRC_URI="https://github.com/nuvious/${PN}/archive/${VER_COMMIT}.tar.gz -> ${P}.tar.gz" LICENSE="LGPL-3" SLOT="0" KEYWORDS="~amd64" IUSE="debug" DEPENDS="dev-libs/openssl sys-libs/pam" RDEPENDS="${DEPENDS}" S="${WORKDIR}/pam-duress-${VER_COMMIT}" src_prepare() { default sed -e "/^CC :=/s|:= .*|:= $(tc-getCC)|" -e "/^CFLAGS :=/s|-O2|${CFLAGS}|" \ -i Makefile || die } src_compile() { emake $(use debug && echo "debug") } src_install() { dobin bin/duress_sign dobin bin/pam_test dopammod bin/pam_duress.so einstalldocs }
-
Dead Man's Switch?
Using https://github.com/xmidt-org/dms & https://github.com/nuvious/pam-duress to shred LUKS headers: https://www.buskill.in/luks-self-destruct/
-
self destroying luks?
maybe https://github.com/nuvious/pam-duress
-
can you set up a locking manager so when you log in with specific username/password it doesnt let you in and just takes a photo?
This repo gives you one such tool. It triggers a script when a specific password is used, and can then hand over control to the usual unlocking process or not (as you asked for). The script is whatever you want: taking a pic, maybe transmit it over the internet, possibly including live video, audio and location, distress message, etc. The script can also erase the app, itself and the log entries, then unlocking as if nothing had happend. A downside is that, at least from the repo description and instructions, the Duress action triggers on specific user and password, not on anything but the correct combination. Still, you asked for specific user and password.
- Use secondary login password to trigger selfdestruct
-
Is it possible to enter fake pin code to "unlock" phone/computer?
So far, I've only come across one solution for Linux, called PAM Duress. It executes a script when you log in, so you'd probably need to add some actions that make the files unavailable. I haven't used it myself, as I'm a Windows user.
Duress
-
Ask HN: Protecting your data during robbery
The answer is duress and wasted. https://github.com/x13a/Duress
- L’activation à distance des appareils électroniques par la police inquiète
-
Extended security and enhanced panic response beyond Ripple!
Duress - Enter a password on your lock screen to wipe your device in emergency.
- I was arrested and the police took my phone for an hour. What did they do with it?
-
Bank and phone lessons learned after a robbery
You’re talking about duress codes. Possible on Android https://github.com/x13a/Duress and Linux https://github.com/rafket/pam_duress
-
Software Or App which can Hide or wipe data in instant for windos and Android
On Android maybe this app: https://github.com/x13a/Duress
- French Supreme court: Refusing to provide your phone password is a crime.
-
Password shown on TV - this person was the Minister of Telecommunications in Italy (password is "agata1234", "Agata" is a first name in Italian, could be some relative or a dog's name)
If someone else likes this idea, here is an Android app that will wipe the device when the decoy password is inserted https://github.com/x13a/Duress
-
⟳ 6 apps added, 39 updated at f-droid.org
Duress: Duress password trigger
What are some alternatives?
obs-studio-node - libOBS (OBS Studio) for Node.Js, Electron and similar tools
Wasted - Lock and wipe on emergency.
pam_duress - A pam module written in C for duress codes in linux authentication
Sentry - Enforce security policies.
WSL-Hello-sudo - Let's sudo by face recognition of Windows Hello on Windows Subsystem for Linux (WSL). It runs on both WSL 1 and WSL 2. This is a PAM module for Linux on WSL.
Calliope-Android-App - flash scripts on the calliope mini
KeePassDX - Lightweight vault and password manager for Android, KeePassDX allows editing encrypted data in a single file in KeePass format and fill in the forms in a secure way.
tc-play - Free and simple TrueCrypt/VeraCrypt Implementation based on dm-crypt
davx5-ose - DAVx⁵ is an open-source CalDAV/CardDAV suite and sync app for Android. You can also access your online files (WebDAV) with it.
packages
Infinity-For-Reddit - A Reddit client for Android