Upgrade to Pro — share decks privately, control downloads, hide ads and more …

指紋認証でsshログイン

 指紋認証でsshログイン

YubiKey BIO を使って、指紋認証をして ssh ログインに使ったはなし

Yukimitsu Izawa

December 17, 2022
Tweet

More Decks by Yukimitsu Izawa

Other Decks in Technology

Transcript

  1. ࣗݾ঺հ ➤ YouTuber ➤ My Outdoor Life (https://kanazawa.camp/) ➤ ത࢜(৘ใՊֶ)

    ➤ ΠϯλʔωοτΛ࢖ͬͨૄ݁߹෼ࢄγεςϜͷݚڀΛ͍ͯ͠·͢ ➤ גࣜձࣾΫϧ΢Οοτ औక໾COO ݉ ๺཮ࢧࣾ௕ ➤ Code for Kanazawa ཧࣄ ➤ ిࢠ޻࡞ͱφΠϑΛࣗ࡞͢Δͷ͕झຯͰ͢
  2. SSHͷ伴ੜ੒Yukimitsu-no-iMac: izawa % ssh-keygen -t ed25519-sk Generating public/private ed25519-sk key

    pair. You may need to touch your authenticator to authorize key generation. Enter file in which to save the key (/Users/izawa/.ssh/id_ed25519_sk): ./abc Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in ./abc Your public key has been saved in ./abc.pub The key fingerprint is: SHA256:i6VKPEtPlunUwt4v8DnVzITGtoYyOobrZYe+2a9mbzQ [email protected] The key's randomart image is: +[ED25519-SK 256]-+ | | | | | . . | | = . | | S+ * | | . o+BE.+ + | | .O.%*o= | | .*+#oo* | | .oo*=*=++. | +----[SHA256]-----+ ~/Dropbox/勉強会資料 Yukimitsu-no-iMac: izawa % ls abc* abc abc.pub ύεϑϨʔζೖྗ
  3. ϩάΠϯͯ͠ΈΔ ➤ ࣄલʹର৅αʔόͷauthorized_keysʹ௥Ճ͓ͯ͘͠ % ssh ssh-server.clwit.co.jp Confirm user presence for

    key ED25519-SK SHA256:e7hxJuLIsnTYF+OA7E1cidd(略 User presence confirmed Last login: Mon Dec 5 13:02:12 2022 from 100.100.88.170 izawa@ssh-server:~$ ͜͜Ͱࢦ໲ΛεΩϟϯ