pam-duress
pam_duress
Our great sponsors
pam-duress | pam_duress | |
---|---|---|
18 | 5 | |
1,315 | 143 | |
- | - | |
1.5 | 0.0 | |
11 months ago | over 3 years ago | |
C | C | |
GNU Lesser General Public License v3.0 only | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pam-duress
-
French Supreme court: Refusing to provide your phone password is a crime.
On Linux, there’s pam-duress: https://github.com/nuvious/pam-duress
-
Quick Tip: Enable Touch ID for Sudo
It's actually quite simple and readily available with PAM duress [0] (at least on Linux, I'm not sure about PAM on Mac). It was also discussed here already [1]. Still, you should consider that doing so might not work in your favor.
-
Help with pam, specifically pam_duress
# Copyright 1999-2022 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 EAPI=8 inherit pam toolchain-funcs VER_COMMIT="04e607f9ab674c8dbbf27ea8bb59158178a72f69" DESCRIPTION="A PAM module enabling special 'duress' passwords that will execute arbitrary scripts" HOMEPAGE="https://github.com/nuvious/pam-duress" SRC_URI="https://github.com/nuvious/${PN}/archive/${VER_COMMIT}.tar.gz -> ${P}.tar.gz" LICENSE="LGPL-3" SLOT="0" KEYWORDS="~amd64" IUSE="debug" DEPENDS="dev-libs/openssl sys-libs/pam" RDEPENDS="${DEPENDS}" S="${WORKDIR}/pam-duress-${VER_COMMIT}" src_prepare() { default sed -e "/^CC :=/s|:= .*|:= $(tc-getCC)|" -e "/^CFLAGS :=/s|-O2|${CFLAGS}|" \ -i Makefile || die } src_compile() { emake $(use debug && echo "debug") } src_install() { dobin bin/duress_sign dobin bin/pam_test dopammod bin/pam_duress.so einstalldocs }
[This](https://github.com/nuvious/pam-duress) pam module will not work on gentoo for some reason. I have used the (arch instruction's)[https://github.com/nuvious/pam-duress/blob/Issue-29-ArchDocs/docs/ArchLinux.md] to mitigate the common-auth problem and have copied the library from `/lib/security` to `/lib64/security` (it was not getting found in `/lib/security`) but it still refuses to work. Any ideas?
-
Dead Man's Switch?
Using https://github.com/xmidt-org/dms & https://github.com/nuvious/pam-duress to shred LUKS headers: https://www.buskill.in/luks-self-destruct/
-
self destroying luks?
maybe https://github.com/nuvious/pam-duress
- Use secondary login password to trigger selfdestruct
-
Hacker News top posts: Aug 23, 2021
PAM Duress – Alternate passwords for panic situations\ (286 comments)
-
Pam Duress – Alternate passwords for panic situations
Hey, saw this as mentioned earlier and incorporated your feedback and one other commenter that pointed out a privilege escalation vulnerability. If you have a spare moment would appreciate your critique on the resolution to your concern and/or any other issues you see generally with the codebase. Just a request though, regardless thanks for your feedback!
pam_duress
-
Bank and phone lessons learned after a robbery
You’re talking about duress codes. Possible on Android https://github.com/x13a/Duress and Linux https://github.com/rafket/pam_duress
- self destroying luks?
-
Pam Duress – Alternate passwords for panic situations
Nice, pretty cool stuff. In high-school I worked on something similar (https://github.com/rafket/pam_duress), though this seems to have a somewhat cleaner implementation which is nice to see, and hopefully a more eager maintainer.
What are some alternatives?
obs-studio-node - libOBS (OBS Studio) for Node.Js, Electron and similar tools
tc-play - Free and simple TrueCrypt/VeraCrypt Implementation based on dm-crypt
WSL-Hello-sudo - Let's sudo by face recognition of Windows Hello on Windows Subsystem for Linux (WSL). It runs on both WSL 1 and WSL 2. This is a PAM module for Linux on WSL.
dms - A dead man's switch that executes one or more actions if not actively pinged via its HTTP endpoint
Wasted - Lock and wipe on emergency.
packages
KeePass2.x - unofficial mirror of KeePass2.x source code
jam0001
QuickPass - A strong password generator in the manner of CorrectBatteryHorseStaple :)
Sonic Pi - Code. Music. Live.
persistent-touch-id-sudo - Configures PAM on macOS via a Launch Daemon so that Touch ID for sudo is always available and persists across OS upgrades