headers
Alessandro Ghedini | 11 May 2013 15:15
Picon
Favicon

Bug#707816: liboath0: SHA2 support for TOTP

Package: liboath0
Version: 2.0.2-2
Severity: wishlist

Hi,

according to RFC6238 section 1.2 [0], "TOTP implementations MAY use HMAC-SHA-256
or HMAC-SHA-512 functions, based on SHA-256 or SHA-512 [SHA2] hash functions".

It would be nice if liboath (and pam_oath) supported this.

Thanks

[0] http://tools.ietf.org/html/rfc6238#section-1.2

-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (990, 'unstable'), (600, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.8-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=it_IT.UTF-8, LC_CTYPE=it_IT.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages liboath0 depends on:
ii  libc6  2.17-1

liboath0 recommends no packages.
(Continue reading)

Permalink | Reply | 0 comments |
headers
Debian testing watch | 5 May 2013 18:39
Picon
Favicon

oath-toolkit 2.0.2-2 MIGRATED to testing

FYI: The status of the oath-toolkit source package
in Debian's testing distribution has changed.

  Previous version: 1.12.4-1
  Current version:  2.0.2-2

--

-- 
This email is automatically generated once a day.  As the installation of
new packages into testing happens multiple times a day you will receive
later changes on the next day.
See http://release.debian.org/testing-watch/ for more information.
Permalink | Reply | 0 comments |
headers
Sergey | 18 Apr 2013 18:16
Picon
Gravatar

TOTP - pam module doesn't store h/w key drift

I have a h/w key which works okay but is ~ 1 hour back in past.

I've crawled through the sources and I've made a test.

The problem is — I have to set my window = at least 150, and then, after some successful authentications I
can't change it to normal 3—4. PAM library just doesn't use all that time drift info.
The field called ‘start_moving_factor’ just keeps increasing by 130 every time I log in. And, as I see
in the code it's not used with TOTP =(
I can't keep window=150, this make the whole thing useless.

Are you planning on fixing this?
Permalink | Reply | 3 comments |
headers
Debian FTP Masters | 17 Apr 2013 19:51
Picon
Favicon

Processing of oath-toolkit_1.12.4-1~bpo60+1_amd64.changes

oath-toolkit_1.12.4-1~bpo60+1_amd64.changes uploaded successfully to localhost
along with the files:
  oath-toolkit_1.12.4-1~bpo60+1.dsc
  oath-toolkit_1.12.4.orig.tar.gz
  oath-toolkit_1.12.4-1~bpo60+1.debian.tar.gz
  liboath-dev_1.12.4-1~bpo60+1_amd64.deb
  liboath0_1.12.4-1~bpo60+1_amd64.deb
  oathtool_1.12.4-1~bpo60+1_amd64.deb
  oath-dbg_1.12.4-1~bpo60+1_amd64.deb
  libpam-oath_1.12.4-1~bpo60+1_amd64.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)
Permalink | Reply | 2 comments |
headers
Daniel Pocock | 11 Mar 2013 10:46
Picon

OATH toolkit + dynalogin: Google Summer of Code?


Hi,

Would anybody be interested in putting OATH-related projects into Google
Summer of Code this year?

I understand Google looks at the size of the community when deciding
which projects to support.  I feel that if we submit the projects
collectively, we are more likely to cross the threshold required, and we
may also get interest from students who will contribute improvements
across all the projects.

The deadline to propose this to Google is next Monday, 18 March.  If it
is going to happen, we probably need to put announcements on each of our
web sites inviting students to come into the mailing list and discuss
potential projects.

Regards,

Daniel
Permalink | Reply | 3 comments |
headers
Daniel Pocock | 19 Feb 2013 23:35
Picon

dynalogin 1.0.0 released


Hi all,

I've just released dynalogin 1.0.0, based on OATH toolkit

It's documented in more detail on my blog, and further details will be
published about integration patterns over the coming weeks:

  http://www.pocock.com.au/dynalogin-1.0.0-released

The SHA224 checksum for dynalogin-1.0.0.tar.gz is

  d44af8071f5b03098d43d7820f61aeff2a3c0d97da4dfae1619ff731

Big thanks to Simon for providing the oath-toolkit, the dynalogin PAM
module also started using the code from pam_oath.

Regards,

Daniel
Permalink | Reply | 0 comments |
headers
Daniel Pocock | 4 Feb 2013 23:49
Picon

dynalogin almost 1.0 - testing?


I've recently added TOTP, TLS, PAM and a C client library to dynalogin
code in github.

    https://github.com/dynalogin/dynalogin

and the latest snapshot tarball, 0.10.1:

    https://sourceforge.net/projects/dynalogin/files/

I'm just wondering if anybody might have a look over the dynalogin
code before I make a 1.0 release - particularly the code in
libdynalogin/*.[ch] that interacts with oath-toolkit

Any test results would also be very welcome

Simon, the PAM code was based on your PAM module code, so I'm going to
add your name to the credits as a dynalogin developer.

Regards,

Daniel
Permalink | Reply | 0 comments |
headers
Debian FTP Masters | 28 Jan 2013 19:47
Picon
Favicon

oath-toolkit_2.0.2-3_amd64.changes REJECTED


ACL dm: NEW uploads are not allowed

===

Please feel free to respond to this email if you don't understand why
your files were rejected, or if you upload new files which address our
concerns.
Permalink | Reply | 12 comments |
headers
Debian FTP Masters | 28 Jan 2013 19:29
Picon
Favicon

Processing of oath-toolkit_2.0.2-3_amd64.changes

oath-toolkit_2.0.2-3_amd64.changes uploaded successfully to localhost
along with the files:
  oath-toolkit_2.0.2-3.dsc
  oath-toolkit_2.0.2-3.debian.tar.gz
  liboath-dev_2.0.2-3_amd64.deb
  liboath0_2.0.2-3_amd64.deb
  oathtool_2.0.2-3_amd64.deb
  oath-dbg_2.0.2-3_amd64.deb
  libpam-oath_2.0.2-3_amd64.deb
  libpskc-dev_2.0.2-3_amd64.deb
  libpskc0_2.0.2-3_amd64.deb
  pskctool_2.0.2-3_amd64.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)
Permalink | Reply | 0 comments |
headers
Debian FTP Masters | 27 Jan 2013 21:48
Picon
Favicon

oath-toolkit_2.0.2-2_amd64.changes ACCEPTED into unstable


Accepted:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sun, 27 Jan 2013 20:33:58 +0100
Source: oath-toolkit
Binary: liboath-dev liboath0 oathtool oath-dbg libpam-oath
Architecture: source amd64
Version: 2.0.2-2
Distribution: unstable
Urgency: low
Maintainer: OATH Toolkit Team <oath-toolkit-help <at> nongnu.org>
Changed-By: Simon Josefsson <simon <at> josefsson.org>
Description: 
 liboath-dev - Development files for the OATH Toolkit Liboath library
 liboath0   - OATH Toolkit Liboath library
 libpam-oath - OATH Toolkit libpam_oath PAM module
 oath-dbg   - OATH Toolkit debugging symbols
 oathtool   - OATH Toolkit oathtool command line tool
Changes: 
 oath-toolkit (2.0.2-2) unstable; urgency=low
 .
   * Explicitly disable PSKC to fix FTBFS when libxml2-dev is available in
     the build environment (for example the ia64 buildd caballero).
Checksums-Sha1: 
 a5b5b317e3f2e0860f0eecf7ac94969a8e925cbc 1805 oath-toolkit_2.0.2-2.dsc
 c2c3d8647259ea3913d75b2e237053e06a032b97 4353 oath-toolkit_2.0.2-2.debian.tar.gz
(Continue reading)

Permalink | Reply | 0 comments |
headers
Debian FTP Masters | 27 Jan 2013 21:01
Picon
Favicon

Processing of oath-toolkit_2.0.2-2_amd64.changes

oath-toolkit_2.0.2-2_amd64.changes uploaded successfully to localhost
along with the files:
  oath-toolkit_2.0.2-2.dsc
  oath-toolkit_2.0.2-2.debian.tar.gz
  liboath-dev_2.0.2-2_amd64.deb
  liboath0_2.0.2-2_amd64.deb
  oathtool_2.0.2-2_amd64.deb
  oath-dbg_2.0.2-2_amd64.deb
  libpam-oath_2.0.2-2_amd64.deb

Greetings,

	Your Debian queue daemon (running on host franck.debian.org)
Permalink | Reply | 0 comments |

Gmane