Page MenuHomePhabricator
Create Task
Maniphest T290065

Look at pam-duress authentication module
Closed, DeclinedPublic
Actions

Description

Have a look at pam-duress, this may be a nice addition to the wmf-laptop packages. A simple implementation could just send some type of alert to wmf staff indicating that a user has had to unlock there laptop and credentials have been potentially compromised.

There are of course many issues with pam-duress i.e. any alerting would need some type of connectivity, any alteration preformed could be in breach of various state laws. further even sending a email could have undesired side affects depending on the actor exerting the duress. Either way would be good to have a small play and see what we could do

Event Timeline

jbond triaged this task as Low priority.Aug 31 2021, 9:43 AM
jbond created this task.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 31 2021, 9:43 AM
Aklapper added a project: User-jbond.Sep 1 2021, 12:55 PM
Aklapper removed a subscriber: User-jbond.
jbond closed this task as Declined.Nov 20 2023, 4:20 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL