OTPme

18 December 2015

22:25 Feature #66: Allow usage of U2F token as second factor token with "password" tokens

* Implemented usage of U2F tokens as second factor token with static password tokens
* Currently this can only be us... The 2nd

22:20 Feature #67 (In Bearbeitung): Implement deployment of SSH public keys

* OTPme hostd/noded should deploy SSH public keys of tokens assigend to their host
* We may use openssh's Authorized... The 2nd

17 December 2015

19:59 Feature #66 (In Bearbeitung): Allow usage of U2F token as second factor token with "password" tokens

* The first factor should be a static password that can be used to encrypt offline token and session
* The second fa... The 2nd

13 December 2015

14:33 Feature #65 (In Bearbeitung): implement revoking of script signatures

* It should be possible to revoke a script signature to invalidate a script The 2nd

08 December 2015

23:08 Feature #64 (In Bearbeitung): Implement U2F token

* Implemented counter check using the token counter mechanism for synchronization between nodes/hosts The 2nd

07 December 2015

00:36 Feature #64: Implement U2F token

Implemented first working version that can be used to do OTPme realm authentication.
* Checking U2F counter needs ... The 2nd

29 November 2015

18:16 Feature #64: Implement U2F token

Some notes on U2F:
It looks like the "master key" of a U2F token is generated while manufacturing the key and cann... The 2nd

16:43 Feature #64 (In Bearbeitung): Implement U2F token

* Add generic U2F token
* Implement deployment with OTPme client tools
U2F Specs: https://fidoalliance.org/specif... The 2nd

23 November 2015

22:42 Feature #63 (In Bearbeitung): Implement token authorization script

* The script will be called by the OTPme daemons after successful authentication of the user/token
* We should pass ... The 2nd

22:41 Feature #62 (In Bearbeitung): Implement user authorization script

* The script will be called by the OTPme daemons after successful authentication of the user
* We should pass some v... The 2nd

22:38 Feature #61 (In Bearbeitung): Implement login script

* The script will be called by pam_otpme after successful authentication
* We should pass some variables to it (e.g.... The 2nd

22:35 Feature #60 (In Bearbeitung): Implement SSH agent script

* The script will be called e.g. by pam_otpme to start the SSH agent to do authentication with SSH tokens (e.g. yubik... The 2nd

19 November 2015

23:03 Feature #57: Implement signing of OTPme scripts

* Implemented signing of OTPme scripts via RSA private key
* Verification of signatures are done before executing th... The 2nd

22:58 Feature #59: Add header to encrypted attributes

* Encryption method now adds a simple "header" to each encrypted field (e.g. SECRET="AES_CFB{633532363965623365623634... The 2nd

22:54 Feature #58: Implement preloading of objects

* Implemented preloading of objects
* Implemented per object type cache watermarks The 2nd