Libary and CLI for working with dOTP
Find the binaries at github.com/mdp/go-dotp/releases
go get github.com/mdp/go-dotp
go get github.com/mdp/go-dotp/...
Inside of sshd_config (usually at /etc/ssh/sshd_config)
Match Group twofactorusers
ForceCommand /location/of/bin/dotp sshauth --id='myserver.com'
Users in the 'twofactorusers' group will now need to have their dOTP PublicID stored inside of $HOME/.dotp_id
When they login to SSH they will be presented with a QRCode Challenge which must be scanned with a dOTP mobile application to decrypt the One Time Password
dotp challenge --pubid "E7jY95KejKzcXmhZct2Kvcz2QSap4vVTb89S6eKkBXuhK" --id="myserver.com" myotp123
Seed should always come from a random source.
dotp generate `cat /dev/random | env LC_CTYPE=C tr -dc 'a-zA-Z0-9' | fold -w 64 | head -n 1`