Dotfiles

Commit Graph

Author	SHA1	Message	Date
The_miro	4d797c537d	amssh: fix FIDO2 auth; add pamtester to core; add package audit script - amssh: use dedicated /etc/pam.d/amssh service instead of login (pam_u2f was commented out in login); auto-create service and register key on first-launch FIDO selection - amssh: redirect pamtester stdout+stderr to /dev/tty so the tap prompt is visible and the success message doesn't contaminate pass=$(_get_passphrase) - amssh: split _fido_pam_available into _fido_hardware_available (for dialog gating) and _fido_pam_available (runtime — requires keys file + PAM service) - setup: add pamtester to core-packages.sh - setup: add audit-packages.sh to verify installed packages come from the expected source (pacman/AUR/flatpak) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-11 19:09:38 +02:00
The_miro	78312e9b4d	amssh now themed	2026-05-11 13:26:02 +02:00
The_miro	4dbe200293	amssh: encrypted SSH manager with fzf TUI and wofi drun mode - AES-256-CBC store with PBKDF2-SHA256 (600k iters), passphrase auth - FIDO2/PAM opt-in second factor via pam_u2f + pamtester - fzf TUI: vim-style nav (j/k/g/G//), a=add, d=delete, q=quit - Full-screen tput add form with Tab/Enter field advance, star-masked password - SSH_ASKPASS_REQUIRE=force for stored password auth (no sshpass) - First-launch dialog to choose passphrase vs FIDO2 - Hyprland keybind: SUPER-ALT-CTRL-S Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-11 11:21:56 +02:00

Author

SHA1

Message

Date

The_miro

4d797c537d

amssh: fix FIDO2 auth; add pamtester to core; add package audit script

- amssh: use dedicated /etc/pam.d/amssh service instead of login (pam_u2f
  was commented out in login); auto-create service and register key on
  first-launch FIDO selection
- amssh: redirect pamtester stdout+stderr to /dev/tty so the tap prompt is
  visible and the success message doesn't contaminate pass=$(_get_passphrase)
- amssh: split _fido_pam_available into _fido_hardware_available (for dialog
  gating) and _fido_pam_available (runtime — requires keys file + PAM service)
- setup: add pamtester to core-packages.sh
- setup: add audit-packages.sh to verify installed packages come from the
  expected source (pacman/AUR/flatpak)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-11 19:09:38 +02:00

The_miro

78312e9b4d

amssh now themed

2026-05-11 13:26:02 +02:00

The_miro

4dbe200293

amssh: encrypted SSH manager with fzf TUI and wofi drun mode

- AES-256-CBC store with PBKDF2-SHA256 (600k iters), passphrase auth
- FIDO2/PAM opt-in second factor via pam_u2f + pamtester
- fzf TUI: vim-style nav (j/k/g/G//), a=add, d=delete, q=quit
- Full-screen tput add form with Tab/Enter field advance, star-masked password
- SSH_ASKPASS_REQUIRE=force for stored password auth (no sshpass)
- First-launch dialog to choose passphrase vs FIDO2
- Hyprland keybind: SUPER-ALT-CTRL-S

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-11 11:21:56 +02:00

3 Commits (ae58b798b95d7966eda3cc9cdcabc6dc97fff716)