https://blog.lanlocked.xyz/tags/security/Recent content in Security on WretchedGhost's Tech Blog and RantsHugoen-usSat, 21 Oct 2023 00:00:00 +0000https://blog.lanlocked.xyz/post/u2f-auth-and-login-on-arch-linux/Sat, 21 Oct 2023 00:00:00 +0000https://blog.lanlocked.xyz/post/u2f-auth-and-login-on-arch-linux/<h3 id="credit-where-credit-is-due">Credit Where Credit Is Due</h3> <p>I used a lot of <a href="https://old.jamesthebard.net/archlinux-and-u2f-login/">https://old.jamesthebard.net/archlinux-and-u2f-login/</a> config but then tweaked it and added a litle more explination as his entry was from 2017~.</p> <h2 id="lets-start-the-rant">Let&rsquo;s Start the Rant</h2> <p>I have always wanted a way to get away from always having to type in password to login or use sudo. There are security concerns by allowing this type of login, one is the fact that anyone who possesses my key could then login and run as sudo, also is the factor that with some tweaking you can make it only allow for key entry via u2f <code>:lock:</code>. A third way, which is the most secure way, is to have it where you must type in the password and possess the u2f hardware key to login.</p>