Take your Linux logins up to the next level with YubiKey. YubiKeys support one-time passcode, smart card & more – enabling one security key to an unlimited number of applications. Today we’ll show you how to make it work with SSH under Linux.

Plus our thoughts on the NSA using Red Hat, the big changes coming to openSUSE, our picks & more!

Thanks to:

• Get Paid to Write for DigitalOcean

Direct Download:

HD Video | Mobile Video | WebM Torrent | MP3 Audio | OGG Audio | YouTube | HD Torrent

RSS Feeds:

HD Video Feed | Large Video Feed | Mobile Video Feed | MP3 Audio Feed | Ogg Audio Feed | iTunes Feed | Torrent Feed

Become a supporter on Patreon:

— Show Notes: —

Setting up a Yubikey with Linux

Brought to you by: O’REILLY OSCON

• Link from Yubico Support regarding U2F and CCID

Getting started with Yubikey

• YubiKey Family of Products | Strong Two-Factor Authentication for Secure Logins | Yubico

Introducing the YubiKey Nano – YouTube

• YubiKey Nano

Install Yubikey Support in Linux

sudo apt-get install opensc

sudo apt-add-repository ppa:yubico/stable

sudo apt-get install yubico-piv-tool

yubico-piv-tool -s 9a -a generate -o public.pem

yubico-piv-tool -a verify-pin -P 123456 -a selfsign-certificate -s 9a
-S \"/CN=SSH key/\" -i public.pem -o cert.pem

yubico-piv-tool -a import-certificate -s 9a -i cert.pem

ssh-keygen -D $OPENSC_LIBS/opensc-pkcs11.so

ssh -I $OPENSC_LIBS/opensc-pkcs11.so user@remote.example.com

Change Pin

yubico-piv-tool -a change-pin -P 123456 -N TheNewPinHere

yubico-piv-tool -a change-puk -P 12345678 -N TheNewPinHere

Edit SSH Client to look for Yubikey

vi /etc/ssh/ssh_config

Append the line For Ubuntu

PKCS11Provider /usr/lib/x86_64-linux-gnu/opensc-pkcs11.so

Get Key

ssh-keygen -D /usr/lib/x86_64-linux-gnu/opensc-pkcs11.so

For Ubuntu 32bit

PKCS11Provider /usr/lib/i386-linux-gnu/opensc-pkcs11.so

For Arch

PKCS11Provider /usr/lib/opensc-pkcs11.so

For Fedora

PCKS11Provider /usr/lib64/opensc-pkcs11.so

— PICKS —

Runs Linux

• Personal Trainer Robot Runs Linux

Vizzy will be a personal assistant robot, designed to teach exercise routines and provide physical therapy support, while also ensuring proper exercise form and monitoring physiological responses. So, much like human personal trainers, Vizzy will encourage users to keep exercising, even when they say they are tired.

Portuguese Robotics research is poised to become a reference in the field with the creations like Vizzy, a personal training robot created in the scope of one of the Entrepreneurial Research Initiatives of the Carnegie Mellon Portugal Program.
Vizzy will be a personal assistant robot, designed to teach exercise routines and provide physical therapy support, while also ensuring proper exercise form and monitoring physiological responses. This will be accomplished with its motion detectors that, much like the technology currently present in gaming consoles, is able to read the user’s body positioning. But Vizzy will also be able to detect other responses, such as body temperature and breathing pattern to gauge the user\’s physical reaction to the routine and adjusting it accordingly. So, much like human personal trainers, Vizzy will encourage users to keep exercising, even when they say they are tired.

Vizzy is under development within the “AHA – Augmented Human Assistance” project, lead by Profs. Alexandre Bernardino (IST) and Daniel P. Siewiorek (CMU). AHA is one of the six selected proposals of the CMU Portugal Program Entrepreneurial Research Initiative in 2014.

• vislab-tecnico-lisboa/vizzy · GitHub
• RBCog-Lab
• Vizzy. Com este robô não vai poder fingir que está cansado para fazer exercício

Desktop App Pick

• PeaZip | Free archiver and RAR file extractor utility

PeaZip is a sleek open source file and archive manager that supports a wide array of compression and encryption standards. It provides many helpful security features such as two-factor authentication, secure deletion, checksum and hash verification and WinZip\’s, PKZip\’s and 7\’s AES256 encryption, to name a few. PeaZip is a simple, sleek feature packed archive manager I recommend for any desktop.

Weekly Spotlight

• Hydrogen Rythem Sequencer

• Pattern-based sequencer, with unlimited number of patterns and ability to chain patterns into a song.

• Up to 192 ticks per pattern with individual level per event and variable pattern length.
• Unlimited instrument tracks with volume, mute, solo, pan capabilities.
• Multi layer support for instruments (up to 16 samples for each instrument).
• Sample Editor, with basic cut and loop functions. (NEW)
• Time-stretch and pitch functions via rubberband cli. Require the rubberband-cli package. (NEW)
• Play-lists with scripting function. (NEW)
• Advanced tab-tempo. (NEW)
• Director Window with a visual metronome and song position tags. (NEW)
• Time-line with variable tempo. (NEW)
• Single and stacked pattern mode. (NEW)
• Export/Import single patterns into song projects. (NEW)
• Midi learning via Shift+MouseClick on many gui-cotrollers combined with a midi settings editor. *(NEW)
• Ability to import/export song files.
• Unique human velocity, human time, pitch and swing functions.
• Multiple patterns playing at once.

— NEWS —

RedHat used by NSA Spies

• Richard Stallman \’basically\’ has no problem with the NSA using GNU/Linux

Rebasing openSUSE

• openSUSE Stuck in the middle: https://youtu.be/BH99TSrfvq0?t=6m33s

• OBS is getting SLE Sources, and MX fixed: https://youtu.be/BH99TSrfvq0?t=11m6s

Canonical partners with Lenovo to launch Ubuntu-powered ThinkPad L450 laptops in India

As for the specs of the ThinkPad L450 series, users have the choice of Intel Core i3 and i5 processors, paired with AMD Radeon R5 M240 2GB VRAM Intel HD 5500 GPU, 4GB of RAM, and 500GB hard drives. The laptops sport a 14-inch display with HD (1,280 x 720) screen resolution.

VirtualBox 5.0 final available

2 Months after the Beta 3 release Oracle has announced that Oracle VM VirtualBox 5.0 is available today. The guest OS performance has been improved by leveraging built-in virtualization support.

Feedback:

Linux Academy

• Linux Academy | Linux and AWS Online Training

• https://slexy.org/view/s21um5h1kd

• https://slexy.org/view/s21OaIYbZk

• https://slexy.org/view/s20yT3fyHs

• https://slexy.org/view/s2TSOlSr1k

• Support Jupiter Broadcasting on Patreon

Chris’s Twitter account has changed, you’ll need to follow!

Chris Fisher (@ChrisLAS) | Twitter

— CHRIS\’ STASH —

Hang in our chat room:

irc.geekshed.net #jupiterbroadcasting

— NOAH\’S STASH —

Noah\’s Day Job

Altispeed Technologies

Contact Noah

noah [at] jupiterbroadcasting.com

Find us on Google+

• Chris
• Noah J. Chelliah
• Jupiter Broadcasting’s Page

Find us on Twitter

• Chris – ChrisLAS
• Noah – Kernellinux

Follow us on Facebook

• Jupiter Broadcasting on Facebook
• Noah – Kernellinux

Catch the show LIVE Sunday 10am Pacific / 1pm Eastern / 6pm UTC:

• https://jblive.tv
• Network Calendar

The post SSH Authentication with YubiKey | LAS 373 first appeared on Jupiter Broadcasting.

Everyone’s beloved password cracker has had a major update, and you won’t believe what it can do now!

The Aerospace industry has a new Advanced Persistent Threat, and a major Microsoft XML flaw already being exploited.

Plus we share some infrastructure wisdom in today’s feedback segment.

All that and more, on this week’s TechSNAP!

Thanks to:

Use our codes TechSNAP10 to save 10% at checkout, or TechSNAP20 to save 20% on hosting!

Limited time offers:

$1.99/mo economy hosting for 3 months – special offer!
Code:  199tech
Expires:  June 30, 2012

$3.99 .US domain!
Code:  399us4

Support the Show:

   

Show Notes: