diff options
author | Mauro Santos | 2015-11-18 19:18:38 +0000 |
---|---|---|
committer | Mauro Santos | 2015-11-18 19:18:38 +0000 |
commit | 3fca96f28d338fe545ab4e8a0e6241c3bff54fa9 (patch) | |
tree | d61754e15928b035a1327221993e830723b86e78 /linuxpba.conf.etc | |
parent | 2a9958aed5c09a50e6080d672fcd3469d82201ad (diff) | |
download | aur-3fca96f28d338fe545ab4e8a0e6241c3bff54fa9.tar.gz |
Add support for challenge-response with the yubikey.
Misc fixes and tweaks.
Diffstat (limited to 'linuxpba.conf.etc')
-rw-r--r-- | linuxpba.conf.etc | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/linuxpba.conf.etc b/linuxpba.conf.etc index d70f596877e8..40f2ff9bda44 100644 --- a/linuxpba.conf.etc +++ b/linuxpba.conf.etc @@ -20,13 +20,14 @@ USE_SEDUTIL_PBA=1 # The challenge to send to the yubikey. The response will unlock the # keyring file. Use the challenge configured here as the challenge when -# creating your luks encrypted keyring file. -YKCHAL=GiveMeThePassword +# creating your luks encrypted keyring file. Alternatively leave the challenge +# blank to be prompted for the challenge when booting. +YKCHAL="GiveMeThePassword" # Keyfile name. Use an udev rule to create a single symlink to one of many # devices with the luks keys and add the rule file in the FILES array above, # or set this to /dev/disk/by-id of the device where you keep the keyfile. -KFNAME=/dev/cryptkey +KFNAME="/dev/cryptkey" # How many bytes to skip in the beginning of the keyfile device KFSKIP=524288 |