Differences

This shows you the differences between two versions of the page.

--- osx:start [2022/03/30 14:22]
robm [Change URL and file-type/MIME default handlers]
+++ osx:start [2022/05/13 13:19]
robm [GPG with remote forwarding]
@@ Line 712: / Line 712: @@
 session    required       pam_permit.so
 </code>
 These appear to be tried in the order listed, and if one aborts (e.g. press ESC for TouchID) the next is tried (i.e. the usual terminal password prompt)
+To make this work from within ''tmux'' sessions, you can install another PAM module: ''pam_reattach.so'': https://github.com/fabianishere/pam_reattach
+Install by first running:
+<code>
+brew install pam-reattach
+</code>
+and then modifying ''/etc/pam.d/sudo'' to add it before ''pam_tid.so'':
+<code>
+# sudo: auth account password session
+auth       optional       pam_reattach.so
+auth       sufficient     pam_tid.so
+auth       sufficient     pam_smartcard.so
+auth       required       pam_opendirectory.so
+account    required       pam_permit.so
+password   required       pam_deny.so
+session    required       pam_permit.so
+</code>
 ====== Automatic fan control when on AC power to avoid sweaty palms ======
@@ Line 788: / Line 808: @@
 Server testcase: <code>echo "foo" | gpg --encrypt -r "Robert Meerman" | gpg --decrypt</code>
+**Future direction**: Use [[https://medium.com/@prbinu/touch2sudo-enable-remote-sudo-two-factor-authentication-using-mac-touch-id-df638b7da594|touch2sudo]] to prompt for finger print before providing credentials?
 ====== Number Pad ======

RobMeerman.co.uk

User Tools

Site Tools

Differences

Page Tools