Download

More Information

pam_usb

Changes: Hardware support was improved. Now devices without vendor and model information can be used for authentication. Non-USB devices are now supported, so you can now use every kind of removable storage device, such as SD or MMC cards. Many other smaller bugfixes and features have been included, such as the DBUS workaround and support for Python 2.5.

Changes: A security issue related to OpenSSH authentication has been fixed. The quiet option has been fixed (now it is really quiet). Support has been added for devices without vendor/model information.

Changes: Both pam_usb and its tools (adm and hotplug) have been redesigned from the ground up and rewritten from scratch. Hardware recognition is now done through HAL, which provides a stable interface over kernel changes. Certificates have been replaced by one time pads. That will prevent copies of the USB device from being used for authentication. pam_usb now verifies device information (vendor, product, serial number, and UUID) in the authentication process. pamusb-agent (formely usbhotplug) make use of DBUS signals (sent by HAL) instead of kernel hotplugging.

Changes: This release adds a verbose mode that prints authentication status while the debug output is turned off. The code that checks whether the authentication is requested locally or remotely has been rewritten, and now works on systems that don't set PAM_TTY properly. There are better default options: on a common setup, you shouldn't need to set any option as the default suits most needs.

Changes: pam_usb will now also try to autodetect /dev/sdN devices (not just /dev/sdNX). A bug that happened when the application using PAM didn't set PAM_TTY correctly was fixed. The use_first_pass and try_first_pass options were added. If you enter your password on another PAM module (such as pam_mount or pam_ssh), pam_usb will now use that password to decrypt the private key.