It's partially a project presentation and partially a question.
I've added some security exceptions to my system allowing me to login in several ways with my mobile device:
- Unlock/Lock script in KDE Connect (Which turns the monitor on with
xsetand logging me in using
loginctland vice versa).
udevrule that does the same when specifically my phone is connected via USB (Verified using
I really wanted to do this with the device fingerprint instead of just connecting but there's a single project for that and it's not very stable, there's another one for Windows that looks fantastic but it's not open source and there's no Linux integration currently.
blue-proximity, the BT connectivity is very unstable so this whole mechanism became very unreliable (even when the phone was figuratively on the laptop itself the phone wasn't recognized and both their BT adapters were on and connected).
pam-usb is only for storage devices, not just any USB device.
The next planned step is to have either one of these:
- As long as the phone is connected PAM will not ask for password (
- When the phone is connected I'll be able to bypass the PAM password prompt (regardless) using the fingerprint reader on the mobile device.
I thought about implementing this using
python-pam but so far I wasn't able to understand what are the conditions and what the script does when password is required, is there a way to check if a specific mobile device is connected and just bypass the password prompt (or ask for a fingerprint on an Android device using ADB)?
I'd love to share any files and script I created it's just too messy right now and there are many small things I've patched and hardcoded so I won't have to deal with multiple seats and sessions etc.