pam_yubico
« Back to VersTracker
Description:
Yubico pluggable authentication module
Type: Formula  |  Tracked Since: Nov 13, 2024
Links: Homepage  |  @Yubico  |  formulae.brew.sh
Category: Security
Tags: authentication security pam yubikey 2fa
Install: brew install pam_yubico
About:
The pam_yubico module integrates YubiKey hardware tokens with the Pluggable Authentication Module (PAM) framework. It enables two-factor authentication (2FA) for system login, sudo, and other PAM-aware services by requiring both a password and a YubiKey OTP. Its main value is adding strong, hardware-based security to standard Linux/Unix authentication.
Key Features:
  • Enables two-factor authentication with YubiKey OTP
  • Integrates with the standard Linux PAM framework
  • Supports local file-based and online Yubico validation servers
  • Configurable for different authentication modes (e.g., required, sufficient)
  • Works with various system services like login, sudo, and SSH
Use Cases:
  • Securing SSH access on servers with hardware 2FA
  • Adding a second factor to sudo or desktop login on workstations
  • Implementing strong authentication for internal infrastructure and services
Alternatives:
  • google-authenticator-libpam – Provides 2FA using time-based one-time passwords (TOTP) from software apps, not hardware-specific YubiKeys.
  • pam_u2f – Uses the FIDO U2F/WebAuthn standard for hardware tokens, supporting a broader range of security keys beyond Yubico-specific OTP.
Version History
Detected Version Rev Change Commit
Nov 13, 2024 9:06am 0 VERSION_BUMP ff9f8a36
« Back to VersTracker  |  Browse Packages  |  About