Is it a good or bad idea to use usb key for login, assuming that the usb key is required for an active local login. I guess I am wondering about the implications to sudo, etc.. that this would imply.
I am wanting to set up the decrypt keys on the same usb key

Hello,

Don't know exactly what you are looking for but I followed this site to set up a USB stick for authentication and it works great on LMDE. The way I have it set up is to lock my laptop when I disconnect it and unlock when I reconnect without having to type my password every time. If the PAM module that's used doesn't detect the USB stick then I have to type my password. Of course there are lots of other possible uses for this, it's up to you to decide. I didn't use any encryption/decryption however, so not sure what you mean by saving the decrypt key on the stick also.

Kind regards,

Eric

1 members found this post helpful.

Thanks.

I had used that site. The issue I am running into is that ANY usb device seems to trigger the event. For example. I log in using the usb token, all is good. Next, I need to save a file to my 2nd usb device and insert it to do so. At this point it seems like both usb devices get remounted and PAM logs me out, refusing to see the token again.
The idea was to make the pc locked with out my usb token at all times ( i have local security issues ).