Hi! This is a minor release introducing the pam_oath usersfile strings, thanks to Jason for contributing this. Please test that I didn't break the functionality for the release, alas the PAM module does not have a good self-test coverage. See below NEWS entries:
** pam_oath: Support variables in usersfile string parameter.
These changes introduce the ${USER} and ${HOME} placeholder values for
the usersfile string in the pam_oath configuration file. The
placeholder values allow the user credentials file to be stored in a
file path that is relative to the user, and mimics similar behavior
found in google-authenticator-libpam.
The motivation for these changes is to allow for non-privileged
processes to use pam_oath (e.g., for 2FA with
xscreensaver). Non-privileged and non-suid programs are unable to use
pam_oath. These changes are a proposed alternative to a suid helper
binary as well.
Thanks to Jason Graham <jgra...@compukix.net> for the patch. See
<https://gitlab.com/oath-toolkit/oath-toolkit/-/merge_requests/12>.
** doc: Fix project URL in man pages.
Thanks to Jason Graham <jgra...@compukix.net> for the patch. Fixes
<https://gitlab.com/oath-toolkit/oath-toolkit/-/issues/19>.
** build: Drop use of libxml's AM_PATH_XML2 in favor of pkg-config.
** build: Modernize autotools usage.
Most importantly, no longer use -Werror with AM_INIT_AUTOMAKE to make
rebuilding from source more safe with future automake versions.
** Updated gnulib files.
Happy hacking,
Simon
OATH Toolkit provide components to build one-time password
authentication systems. It contains shared C libraries, command line
tools and a PAM module. Supported technologies include the
event-based HOTP algorithm (RFC 4226), the time-based TOTP algorithm
(RFC 6238), and Portable Symmetric Key Container (PSKC, RFC 6030) to
manage secret key data. OATH stands for Open AuTHentication, which is
the organization that specify the algorithms.
The components included in the package is:
* liboath: A shared and static C library for OATH handling.
* oathtool: A command line tool for generating and validating OTPs.
* pam_oath: A PAM module for pluggable login authentication for OATH.
* libpskc: A shared and static C library for PSKC handling.
* pskctool: A command line tool for manipulating PSKC data.
The project's web page is available at:
https://www.nongnu.org/oath-toolkit/
Documentation for the command line tools oathtool and pskctool:
https://www.nongnu.org/oath-toolkit/oathtool.1.html
https://www.nongnu.org/oath-toolkit/pskctool.1.html
Tutorial on PSKC:
https://www.nongnu.org/oath-toolkit/libpskc-api/pskc-tutorial.html
Manual for PAM module:
https://www.nongnu.org/oath-toolkit/pam_oath.html
Liboath Manual:
https://www.nongnu.org/oath-toolkit/liboath-api/liboath-oath.h.html
Libpskc Manual
https://www.nongnu.org/oath-toolkit/libpskc-api/pskc-reference.html
If you need help to use the OATH Toolkit, or want to help others, you
are invited to join our oath-toolkit-help mailing list, see:
https://lists.nongnu.org/mailman/listinfo/oath-toolkit-help
Here are the compressed sources of the entire package:
https://download.savannah.nongnu.org/releases/oath-toolkit/oath-toolkit-2.6.7.tar.gz
https://download.savannah.nongnu.org/releases/oath-toolkit/oath-toolkit-2.6.7.tar.gz.sig
The software is cryptographically signed by the author using an OpenPGP
key identified by the following information:
pub ed25519 2019-03-20 [SC]
B1D2 BD13 75BE CB78 4CF4 F8C4 D73C F638 C53C 06BE
uid [ultimate] Simon Josefsson <si...@josefsson.org>
The key is available from:
https://josefsson.org/key-20190320.txt
I have changed key since older releases, see my transition statements:
https://blog.josefsson.org/2019/03/21/openpgp-2019-key-transition-statement/
https://blog.josefsson.org/2014/06/23/openpgp-key-transition-statement/
Here are the SHA-1 and SHA-224 checksums:
43daea1daab55ff3d5282fdcaec5f23764ff8fb4 oath-toolkit-2.6.7.tar.gz
5d828599959a198aa6e4bd716af59d6f74ea56bc89c9947f6323fa8c
oath-toolkit-2.6.7.tar.gz
General information on contributing:
https://www.nongnu.org/oath-toolkit/contrib.html
OATH Toolkit GitLab project page:
https://gitlab.com/oath-toolkit/oath-toolkit
OATH Toolkit Savannah project page:
https://savannah.nongnu.org/projects/oath-toolkit/
Code coverage charts:
https://oath-toolkit.gitlab.io/oath-toolkit/coverage/
Clang code analysis:
https://oath-toolkit.gitlab.io/oath-toolkit/clang-analyzer/
signature.asc
Description: PGP signature
