| Yubico Forum https://forum.yubico.com/ |
|
| [QUESTION] Yubico PAM Module https://forum.yubico.com/viewtopic.php?f=5&t=1444 |
Page 1 of 1 |
| Author: | svanya [ Thu Aug 14, 2014 5:44 pm ] |
| Post subject: | [QUESTION] Yubico PAM Module |
Why is default calling API server over unsecure HTTP? Is it secure? Why there is no HTTPS? http://api.yubico.com/wsapi/2.0/verify?id=%d&otp=%s TCPDUMP: 18:04:39.643570 IP api.yubico.com.http > xxxxxxxxxx.47122: Flags [P.], seq 1:374, ack 227, win 972, options [nop,nop,TS val 136866956 ecr 8391], length 373 18:04:39.643631 IP xxxxxxxxxx.47122 > api.yubico.com.http: Flags [.], ack 374, win 237, options [nop,nop,TS val 8457 ecr 136866956], length 0 18:04:39.643830 IP xxxxxxxxxx.35021 > api2.yubico.com.http: Flags [F.], seq 228, ack 1, win 229, options [nop,nop,TS val 8457 ecr 164590706], length 0 18:04:39.643924 IP xxxxxxxxxx.51377 > api3.yubico.com.http: Flags [F.], seq 228, ack 1, win 229, options [nop,nop,TS val 8457 ecr 164741641], length 0 18:04:39.644005 IP xxxxxxxxxx.47122 > api.yubico.com.http: Flags [F.], seq 227, ack 374, win 237, options [nop,nop,TS val 8457 ecr 136866956], length 0 18:04:39.644039 IP xxxxxxxxxx.56538 > api5.yubico.com.http: Flags [F.], seq 228, ack 367, win 237, options [nop,nop,TS val 8457 ecr 164435198], length 0 Stefan |
|
| Author: | Tom [ Fri Aug 15, 2014 7:24 am ] |
| Post subject: | Re: [QUESTION] Yubico PAM Module |
Please read the manual. If you feel the default behavior should be different open a github issue on the relative project and lets discuss about it. Quote: "urllist": List of URL templates to be used. This is set by calling
ykclient_set_url_bases. The list should be in the format : "https://server/wsapi/2.0/verify;https://server/wsapi/2.0/verify" "url": This option should not be used, please use the urllist option instead. Specify the URL template to use, this is set by calling yubikey_client_set_url_template, which defaults to: https://api.yubico.com/wsapi/verify?id=%d&otp=%s or https://api.yubico.com/wsapi/2.0/verify?id=%d&otp=%s |
|
| Page 1 of 1 | All times are UTC + 1 hour |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|