~alpine/users

sshd and google authenticator

Sascha Effert <fermat@douglas2a.de>
Details
Message ID
<d2cc42a51f8426e489c00bfde31f4350b5287c8c.camel@douglas2a.de>
DKIM signature
missing
Download raw message
5 years ago 
Hi,

I am trying to setup a docker image based on alpine that runs an SSH
server using google authenticator. I followed the description at 
https://wiki.alpinelinux.org/wiki/Two_Factors_Authentication_With_OpenSSH
. This works, as long as I do not use the feature to allow only 3 tries
in 30 seconds. So, the following line has NOT to be in the
.google_authenticator file in my home dir:

" RATE_LIMIT 3 30

If it is in, any verification code is denyed.

Does anybody has an idea why this happens? I would really like to use
this feature as I do not want to setup fail2ban or anything similiar to
protect my SSH server against brute force attacks... It shall be
reachable from internet...

bests

Sascha
Reply to thread Export thread (mbox)