A USB dongle for one-time passwords
The benefits of OpenKubus include portability and the ability to customize hardware without breaking the bank. The drawback is that the stick and all the servers need to synchronize the serial number. If you need to authenticate against multiple servers, you will need a central server. Tools for managing OpenKubus in larger environments with large numbers of users are still rudimentary.
OpenKubus will not protect you against man-in-the-middle attacks . The service you are calling has to demonstrate authenticity separately. However, the project is an exciting platform for any administrator interested in experimenting.
- "One-Time Passwords" by Udo Seidel, Linux Magazine, November 2008, pg. 22
- USBprog wiring diagram: http://www.embedded-projects.net/usbprog
- Shop for OpenKubus hardware: http://shop.embedded-projects.net
- OpenKubus: http://code.google.com/p/openkubus (in German)
- Installation notes on AVR-GCC: http://www.nongnu.org/avr-libc/user-manual/install_tools.html
- PAM configuration syntax: http://kernel.org/pub/linux/libs/pam/Linux-PAM-html/sag-configuration-file.html
- Wrapper Generator SWIG: http://www.swig.org/
- Man-in-the-middle attacks: http://en.wikipedia.org/wiki/Man-in-the-middle_attack
Linux Foundation's big event celebrates the 25th anniversary of Linux
Linux has evolved from a “won’t be a professional” project to one of the most professional software projects in the history of computers.
Competitors get in the game with RHEL without Red Hat
Security researchers have already notified Microsoft; some fixes are available
The company is collaborating with Google and Intel to use Kubernetes as an engine for Fuel
Customers can take a free test drive of SLES for HPC on the Azure Cloud
San Francisco-based chip company announces their first fully open source chip platform.
The whole distro gets rebuilt on glibc 2.3
Ubuntu Vendor tries to solve app packaging and distribution problem across distributions.