pam_schroedinger-0.2s-lp150.2.1.x86_64.rpm


Advertisement

Description

pam_schroedinger - Uncertainty for brute forcers during login

Property Value
Distribution openSUSE Leap 15.0
Repository Security all
Package name pam_schroedinger
Package version 0.2s
Package release lp150.2.1
Package architecture x86_64
Package type rpm
Installed size 13.60 KB
Download size 13.23 KB
Official Mirror widehat.opensuse.org
pam_schroedinger prevents from dicitionary/brute-force attacks against PAM
accounts by only returning PAM_SUCCESS if there was no previous login or
attempt within a certain timeframe. In a common scenario, users do not
authenticate more than once in a second. Everything else looks like a brute
force. pam_schroedinger prevents PAM accounts from dictionary attacks much
better than a sleep-based delay hardcoded in the authentication mechanism, as
used today in su or sudo for example. The attacker will see no delay in his
attack, but he will not see which login token succeeds, even if he tried the
right one. So there is a certain uncertainty added to the login process so
attackers can never be sure the cat is dead or alive. This is the opposite of
pam_timestamp.

Alternatives

Package Version Architecture Repository
pam_schroedinger - - -

Requires

Name Value
libc.so.6(GLIBC_2.7)(64bit) -
systemd -

Provides

Name Value
pam_schroedinger = 0.2s-lp150.2.1
pam_schroedinger(x86-64) = 0.2s-lp150.2.1

Download

Type URL
Binary Package pam_schroedinger-0.2s-lp150.2.1.x86_64.rpm
Source Package pam_schroedinger-0.2s-lp150.2.1.src.rpm

Install Howto

  1. Add the Security repository:
    # zypper addrepo http://widehat.opensuse.org/opensuse/repositories/security/openSUSE_Leap_15.0/ security
  2. Install pam_schroedinger rpm package:
    # zypper install pam_schroedinger

Files

Path
/lib64/security/pam_schroedinger.so
/usr/lib/tmpfiles.d/pam_schroedinger.conf
/usr/share/doc/packages/pam_schroedinger/LICENSE.txt
/usr/share/doc/packages/pam_schroedinger/README.md

Changelog

2015-01-20 - mrueckert@suse.de
- initial package

See Also

Package Description
pam_u2f-1.0.7-lp150.13.1.x86_64.rpm U2F authentication integration into PAM
pam_yubico-2.26-lp150.18.3.x86_64.rpm Yubico Pluggable Authentication Module (PAM)
passwordsafe-1.03~beta-lp150.1.38.x86_64.rpm A password database utility
pax-utils-1.2.2-lp150.116.1.x86_64.rpm Tools to Check ELF Files for Security Relevant Properties
pdfcrack-0.16-lp150.1.1.x86_64.rpm A Password Recovery Tool for PDF-files
perl-File-Find-Rule-0.34-lp150.24.3.noarch.rpm Alternative interface to File::Find
perl-Number-Compare-0.03-lp150.26.3.noarch.rpm Numeric comparisons
perl-Text-Glob-0.11-lp150.26.3.noarch.rpm Match Globbing Patterns Against Text
perl-macros-1.0-lp150.22.1.x86_64.rpm Perl macros for rpm build
phrasendrescher-1.2.2c-lp150.3.1.x86_64.rpm A modular and multi processing Pass Phrase cracking Tool
prey-0.6.4-lp150.1.1.noarch.rpm Tracking device for your laptop
python-scan-build-2.0.6-lp150.1.1.noarch.rpm static code analyzer wrapper for Clang
python2-bencode-1.2.0-lp150.3.1.noarch.rpm The BitTorrent bencode module as light-weight, standalone package
python2-capng-0.7.9-lp150.41.2.x86_64.rpm Python bindings for libcap-ng library
python2-pyscard-1.9.7-lp150.11.1.x86_64.rpm Python module adding smart card support
Advertisement
Advertisement