opensource.lsexperts.de

LinOTP 2.4.1 will be on the OpenRheinRuhr in Oberhausen this weekend.

You will be able to see new features of upcoming LinOTP 2.4.1

UserIdResolver: Implemented sizelimit for LDAP-Resolver. Thus it is even easier to handle LDAP trees of several thousand users.
WebUI: Administrative rollout of Google-Authenticator (event, time) via WebUI
Tool: back_perl module for setting up an OTP capable LDAP-Proxy
Selfservice: added unassign, delete, enable...
Selfservice: Imprint for selfservice
WebUI/Selfservice: Possibility to completely customize look and feel
Token: Support for VASCO Digipass GO tokens
Token: configure name of Google-Authenticator
CLI client: mass rollout of yubikeys
Getserial: Tool to determine the serial number of an unknown token by giving the OTP value (HOTP, TOTP and VASCO)
API: Session protection of Web API

You can also listen to a talk about LinOTP implementations at two universities.

The LSE LinOTP Enterprise Edition continues to be provided by LSE for enterprise customers with demand for professional services, additional management features and additional supported hardware tokens.

Posted Fri Nov 11 09:29:03 2011

We provided a howto to secure your Linux desktop with one time passwords.

More on LSE LinOTP Community Edition.

The LSE LinOTP Enterprise Edition continues to be provided by LSE for enterprise customers with demand for professional services, additional management features and additional supported hardware tokens.

Posted Mon May 16 16:04:42 2011

LinOTP 2.3 went to Linuxtag in Berlin.

On the Linuxtag in Berlin we presented the new LinOTP 2.3. It was released on May 1st and besides many other things comes with a new great policy framework.

We had many interesting talks on the Linuxtag. We also got many ideas from the visitiors to come up with new interesting features.

More on LSE LinOTP Community Edition.

The LSE LinOTP Enterprise Edition continues to be provided by LSE for enterprise customers with demand for professional services, additional management features and additional supported hardware tokens.

Posted Mon May 16 16:01:14 2011

Today we are proud to release LinOTP 2.1.

New key features are the multi client capability, self service, new tokens and redundancy in the Active Directory connection.

LSE LinOTP 2 is now licensed under the AGPLv3. The mulit client capability in mind, makes it now more sensible for ISPs and ASPs to use LinOTP 2.

More on LSE LinOTP Community Edition.

The LSE LinOTP Enterprise Edition continues to be provided by LSE for enterprise customers with demand for professional services, additional management features and additional supported hardware tokens.

Posted Fri Jun 25 11:28:26 2010

To integrate client certificate authentication in OTRS more smoothly we provided an opm package, that can be easily installed.

Posted Thu Nov 5 12:52:12 2009

A small authentication module for OTRS enables you to authenticate to OTRS by using a client certificate. Thus we get rid of all these passwords and add a bit more security.

Feel free to adapt it to your needs or make it more flexible.

Posted Tue Oct 27 17:22:54 2009

Today we published ''LinOTP'', our solution for one time password authentication based on the HMAC OTP algorithm (RFC4226), as opensource. LSE LinOTP contained several code fragments that were already published under the GPLv2.

LSE LinOTP is now available as a Community Edition, which is completely licensed under GPLv2 and may be downloaded on this site.

The LSE LinOTP Enterprise Edition continues to be provided by LSE for enterprise customers with demand for professional services, additional management features and additional supported hardware tokens.

In publishing the LSE LinOTP Community Edition we respond to several requests from interested Linux users and opened the strong two factor authentication for a wider community and made it available for non-commercial, non-enterprise use.

Posted Tue Sep 22 16:54:41 2009

We keep testing current -git releases and 2.6.31 seems stable for most of our test cases. We submitted a fix for a memory leak in nfsd which was reported by kmemleak. Kmemleak hooks kmalloc, kfree and friends to track every memory allocation and deallocation. It periodically scans the kernel memory (allocated memory and the stacks of kernel threads) to check if there is still a pointer referencing the objects. If there is no pointer to one of the objects the code location (and stacktrace) where it was allocated along with a message is reported trough sysfs.

Another fix we submitted is for a corner case in EXT4, where the code tried to access the journal when generating an error message. The problem was triggered with a corrupt filesystem, where the journal could not be loaded during mount time and another corruption triggered the oops in the error message.

Apart from this, several other bugs got reported by us among them a lockdep miss-annotation in the tee system call which already got fixed.

Posted Mon Aug 3 10:53:14 2009

We began our regularly testing of the Linux kernel last week. From now on, we will test the current development -git tree regularly on several systems to help stabilizing the tree and find as many bugs as possible before the stable kernel is released. For this we use several test-suites, amongst others the LTP, isic, a customized version of fsfuzzer and several other stress testing tools we found useful. A patch written by Sebastian Andrzej Siewior which fixes an issue we reported already made it into the crypto-dev tree. We will continue this process and once the tree gets more stable we hope be able to take a closer look at different issues ourselves and write further tests.

Posted Wed Jul 8 14:26:26 2009

We are at Cebit again! Meet us in Halle 11, Stand B38.

Posted Wed Feb 25 21:58:30 2009

Developer blog