Fedora Security FAD: The ResultsSat, Dec 1, 2012
Well, I think it was quite successful. Probably the most successful Fedora Activity Day I’ve attended. Many things were accomplished toward the goal of two-factor authentication within Fedora Infrastructure:
- Installed and configured totpcgi authentication on the staging environment. This performs the verification from the clients. There will be several servers doing authentication to prevent a single point of failure.
- Installed and configured pam_url on each staging client with the intent of connecting to the authentication servers.
- Enabled yubikey as an alternate second factor.
- Reviewed RPMs for pam_url and totpcgi (and a few others to help along the way)
- Setup the totpcgi provisioning web page for google authenticator
- Fixed fun bugs in pam_url
- Wrote documentation on how to setup authentication.
A few things were accomplished that were not part of the goals, but good stuff nonetheless:
- Enjoyed some awesome tapas at Buku (a restaurant is at the base of the Red Hat Tower)
- Found the open source cow
- Documented the setup of the OpenPGP SmartCard with gpg-agent and GNOME 3
- Watched Seth Vidal do some Beastie Boys!
- Enjoyed some yummy dinner at Gravy (thanks to Ruth Suehle and Red Hat)
- Discussed some ideas for FUDCon Lawrence and the future of FUDCons
While I didn’t participate in all of the above activities, I was definitely involved in many of them. It turns out, everyone there was fairly involved at the FAD. It was fun to watch everyone come together to solve this issue. Everyone seemed to have a good sense of satisfaction accomplishing the goals.