Add support for challenge-response with the yubikey.

Misc fixes and tweaks.
author: Mauro Santos 2015-11-18 19:18:38 +0000
committer: Mauro Santos 2015-11-18 19:18:38 +0000
commit: 3fca96f28d338fe545ab4e8a0e6241c3bff54fa9 (patch)
tree: d61754e15928b035a1327221993e830723b86e78 /linuxpba.conf.etc
parent: 2a9958aed5c09a50e6080d672fcd3469d82201ad (diff)
download: aur-3fca96f28d338fe545ab4e8a0e6241c3bff54fa9.tar.gz
1 files changed, 4 insertions, 3 deletions
diff --git a/linuxpba.conf.etc b/linuxpba.conf.etc
index d70f596877e8..40f2ff9bda44 100644
--- a/linuxpba.conf.etc
+++ b/linuxpba.conf.etc
@@ -20,13 +20,14 @@ USE_SEDUTIL_PBA=1
 
 # The challenge to send to the yubikey. The response will unlock the
 # keyring file. Use the challenge configured here as the challenge when
-# creating your luks encrypted keyring file.
-YKCHAL=GiveMeThePassword
+# creating your luks encrypted keyring file. Alternatively leave the challenge
+# blank to be prompted for the challenge when booting.
+YKCHAL="GiveMeThePassword"
 
 # Keyfile name. Use an udev rule to create a single symlink to one of many
 # devices with the luks keys and add the rule file in the FILES array above,
 # or set this to /dev/disk/by-id of the device where you keep the keyfile.
-KFNAME=/dev/cryptkey
+KFNAME="/dev/cryptkey"
 
 # How many bytes to skip in the beginning of the keyfile device
 KFSKIP=524288
author	Mauro Santos	2015-11-18 19:18:38 +0000
committer	Mauro Santos	2015-11-18 19:18:38 +0000
commit	3fca96f28d338fe545ab4e8a0e6241c3bff54fa9 (patch)
tree	d61754e15928b035a1327221993e830723b86e78 /linuxpba.conf.etc
parent	2a9958aed5c09a50e6080d672fcd3469d82201ad (diff)
download	aur-3fca96f28d338fe545ab4e8a0e6241c3bff54fa9.tar.gz