-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathREADME
57 lines (37 loc) · 1.61 KB
/
README
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
+----------------MOTPY-------------------+
| MOTP http://motp.sourceforge.net/ |
| |
| motpy for pam_exec.so a python solution|
| by |
| szimszon at oregpreshaz.eu |
| web: https://github.com/szimszon/motpy |
+----------------------------------------+
NO WARRANTY! I'm not a security expert!
License: http://www.gnu.org/licenses/gpl-3.0.txt
= Readme / FAQ =
== What it is? ==
It's a modular Mobile-One Time Password authentication system for linux PAM
systems.
== How is it work? ==
It works based on Mobile One Time Password.
Look at http://motp.sourceforge.net/#1
motpy is a skeleton script which do the OTP validating and provides a solution
for user information management.
motpy imports a backend python module to get and store the user informations to
do the OTP validation.
You can easily create the backend you need. Just look at the existing one.
See README-backend_api.
You may send me your backend :)
There is one script that makes the validation executed by pam_exec.so and the
same script handles the user data management.
For usage syntax please see INSTALL and use
# motpy -h
The user can modify his/her own pin and secret or offset data. But if there is
already one set then the user have to authenticate agains it first.
You should find clients for generating OTPs at
http://motp.sourceforge.net/
== Where are data stored? ==
See the backend's README.
== Are the data stored as plain text? ==
No. The motpy encrypt symmetrically with AES the pins and secrets offsets and
usernames. Look at the source code.