[Bug 3355] no-touch-required flag not restored from hardware token
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Fri Nov 5 11:34:02 AEDT 2021
https://bugzilla.mindrot.org/show_bug.cgi?id=3355
--- Comment #2 from snegrea at gmail.com ---
Thanks for the insight about the FIDO standard. Could you please give
me a pointer about where to find documentation regarding the standard?
I did not have much luck searching.
Is there a way to set no-touch-required flag after the key is
downloaded from the hardware? The main issue is that while the key
is/was properly configured in the hardware token there is no way to
correctly set this flag on the local disk files in the event of a
restore operation. ssh relies local disk files to pick up this flag so
if there is another way to correctly set this flag, then this becomes a
user configuration issue.
This particular issue makes it impossible to consistently use a
hardware token on multiple computers because the flags are not
correctly restored.
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list