No PSKC change this time, only improvements to liboath/oathtool. Happy hacking, Simon
* Version 2.0.2 (released 2013-01-08) ** oathtool: Base32 decoding of keys are now more liberal in what accepts. It can now accept keys on the "gr6d 5br7 25s6 vnck v4vl hlao re" format, i.e., base32 data delimited using SPC and without padding. The old proper base32 format is still supported. ** liboath: oath_base32_decode now ignores SPC and adds pad characters. ** liboath: If password in usersfile is + then ignore supplied password. This enables the pam_oath module to be used with external password verification. Based on patch from Ilkka Virta <[email protected]>. ** tests: Fixed expiry date of some certificates used in the test suite. The last release would only complete 'make check' during a 30 day window. ** API and ABI is backwards compatible with the previous version. The OATH Toolkit makes it easy to build one-time password authentication systems. It contains shared libraries, command line tools and a PAM module. Supported technologies include the event-based HOTP algorithm (RFC4226) and the time-based TOTP algorithm (RFC6238). OATH stands for Open AuTHentication, which is the organization that specify the algorithms. For managing secret key files, the Portable Symmetric Key Container (PSKC) format described in RFC6030 is supported. The components included in the package is: * liboath: A shared and static C library for OATH handling. * oathtool: A command line tool for generating and validating OTPs. * pam_oath: A PAM module for pluggable login authentication for OATH. * libpskc: A shared and static C library for PSKC handling. * pskctool: A command line tool for manipulating PSKC data. The project's web page is available at: http://www.nongnu.org/oath-toolkit/ Documentation for the command line tools oathtool and pskctool: http://www.nongnu.org/oath-toolkit/oathtool.1.html http://www.nongnu.org/oath-toolkit/pskctool.1.html http://www.nongnu.org/oath-toolkit/libpskc-api/pskc-tutorial-pskctool.html Manual for PAM module: http://git.savannah.gnu.org/cgit/oath-toolkit.git/tree/pam_oath/README Liboath manual: http://www.nongnu.org/oath-toolkit/liboath-api/liboath-oath.html Libpskc Tutorial & Manual http://www.nongnu.org/oath-toolkit/libpskc-api/pskc-tutorial-quickstart.html http://www.nongnu.org/oath-toolkit/libpskc-api/pskc-reference.html If you need help to use the OATH Toolkit, or want to help others, you are invited to join our oath-toolkit-help mailing list, see: https://lists.nongnu.org/mailman/listinfo/oath-toolkit-help Here are the compressed sources of the entire package: http://download.savannah.nongnu.org/releases/oath-toolkit/oath-toolkit-2.0.2.tar.gz (3.8MB) http://download.savannah.nongnu.org/releases/oath-toolkit/oath-toolkit-2.0.2.tar.gz.sig (OpenPGP) The software is cryptographically signed by the author using an OpenPGP key identified by the following information: pub 1280R/B565716F 2002-05-05 [expires: 2013-05-10] Key fingerprint = 0424 D4EE 81A0 E3D1 19C6 F835 EDA2 1E94 B565 716F uid Simon Josefsson <[email protected]> sub 2048R/105E722E 2012-03-13 [expires: 2013-07-26] sub 2048R/728AB82C 2012-03-13 [expires: 2013-07-26] sub 2048R/9394F626 2012-03-13 [expires: 2013-07-26] sub 1280R/4D5D40AE 2002-05-05 [expires: 2013-05-10] The key is available from: http://josefsson.org/key.txt dns:b565716f.josefsson.org?TYPE=CERT Here are the SHA-1 and SHA-224 checksums: 3672924a9d9c3373ec62a6b79e9aa1e846c4d178 oath-toolkit-2.0.2.tar.gz 5933a431566d606f83a1f971fab3792b6d4d255b8c70d00752550cb4 oath-toolkit-2.0.2.tar.gz General information on contributing: http://www.nongnu.org/oath-toolkit/contrib.html Savannah developer's home page: https://savannah.nongnu.org/projects/oath-toolkit/ Code coverage charts: http://www.nongnu.org/oath-toolkit/coverage/ Clang code analysis: http://www.nongnu.org/oath-toolkit/clang-analyzer/ Daily snapshots: http://daily.josefsson.org/oath-toolkit/ Autobuild statistics: http://autobuild.josefsson.org/oath-toolkit/
pgpSXbcFkI_Le.pgp
Description: PGP signature
