Skip to content
/ literate-auth Public

"This script adds a two-factor authentication layer to Linux server SSH sessions. **Caution: For testing purposes only. Do not use in production or for critical tasks.** Use at your own risk."

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

carligithub400/literate-auth

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
main.sh
main.sh
 
 

Repository files navigation

literate-auth

To use the included Bash script to implement a two-factor authentication layer (2FA) on a Linux server, follow these steps:

  1. Download and save the script: Save the script with:

    git clone https://github.com/carligithub400/literate-auth/

  2. Set up a Telegram bot:

    • Create a new Telegram bot by talking to the BotFather on Telegram. Make a note of the token provided.

  3. Get your chat ID:

    • Start a chat with your newly created bot on Telegram.
    • Visit the following URL and replace <YOUR_BOT_TOKEN> with your actual bot token: https://api.telegram.org/bot<YOUR_BOT_TOKEN>/getUpdates
    • Look for the 'chat' part in the answer. The id field in the chat object is your chat ID. Make a note of it.

  4. Edit the script:

    • Open the script in a text editor and replace "token" with your Telegram bot token and "id" with your chat ID.

  5. Run the script:

    • Run the script in your terminal:

      bash literate-auth/main.sh

  6. Follow the directions:

    • The script will generate a random 6-digit challenge and send it to your Telegram bot.
    • You will be asked to enter the challenge answer without the entry being displayed.
    • Type the correct answer to continue.

  7. Access to the scale:

    • If the answer is correct, the script grants access to the /bin/bash shell.
    • If the answer is incorrect, the connection will be disconnected.

  8. Cleanup:

    • After successful authentication, the script deletes the challenge file.

  9. Create a user and connect to ssh

    • Create a user with the command that has the code main.sh as the default shell.

      sudo adduser $user --shell=$path_main.sh

    • Change $user with the name of the user and $path_main.sh with the path of the cloned code.

    • Make sure it has execution rights:

    chmod a+xrw literate-auth/
    • Ssh to the user and if all goes well it will say that you have to enter a code.

Important Considerations:

  • Test environment: This script is for testing purposes only. Do not use it in production or for critical tasks.
  • Security: Be careful where and how you deploy this script. Telegram is used for communication, so make sure your bot and chat ID are safe.
  • Permissions: Ensure that the script has the necessary permissions to read and write to the file system.

By following these steps, you can experiment with implementing a simple 2FA layer using Telegram for code transfer in a controlled test environment.

About

"This script adds a two-factor authentication layer to Linux server SSH sessions. **Caution: For testing purposes only. Do not use in production or for critical tasks.** Use at your own risk."

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

No packages published

Languages