Skip to main content

I have a client running ThinClient on a Centos/Redhat Linux server. Unfortunately they were the victim of a ransomware attack and have been asked by their insurance carrier to implement a multi-factor authentication (MFA) system on their server. They product under consideration is DUO which is a PAM (Pluggable Authentication Module) compatible utility. As it stands, AcuConnect under Linux does not support PAM therefore I was wondering if anyone has had any experience adopting an MFA  system in their operation and if so, what, if any products could be recommended. 

I already have a my own internally developed logon/access system for my application which would prevent unauthorized access but the vulnerability is in general shell access to Linux. Therefore some sort of hybrid may be in order

Thank you in advance for any insights

Thanks

Joe Butera

RMS SYSTEMS 

I have a client running ThinClient on a Centos/Redhat Linux server. Unfortunately they were the victim of a ransomware attack and have been asked by their insurance carrier to implement a multi-factor authentication (MFA) system on their server. They product under consideration is DUO which is a PAM (Pluggable Authentication Module) compatible utility. As it stands, AcuConnect under Linux does not support PAM therefore I was wondering if anyone has had any experience adopting an MFA  system in their operation and if so, what, if any products could be recommended. 

I already have a my own internally developed logon/access system for my application which would prevent unauthorized access but the vulnerability is in general shell access to Linux. Therefore some sort of hybrid may be in order

Thank you in advance for any insights

Thanks

Joe Butera

RMS SYSTEMS 

Have you considered deploying using AcuToWeb.  When running your applications through AcuToWeb, you can embed Secure Socket Layer (SSL) support into your applications by specifying a matching private key and digital certificate file using the USE_SSL and SSL_* options in the configuration file.

Have you considered deploying using AcuToWeb.  When running your applications through AcuToWeb, you can embed Secure Socket Layer (SSL) support into your applications by specifying a matching private key and digital certificate file using the USE_SSL and SSL_* options in the configuration file.

Thank you for your reply. I have considered doing the transition to a web based application but my clients prefer the Thinclient/AcuConnect solution on an in-house server model. Fortunately, I have programatically built-in several layers of access control so breaching via the application would be quite difficult. The bigger concern is for a breach from a network connection to the Linux shell. I am having the IT manager at the site setup a test system/server so that we can test how the multi-factor authentication modules react with the AcuConnect process generation.

Thanks

Joe

Terms & ConditionsAccessibility statement