Free Software Foundation!

• authentication
• encryption
• firewall
• internet
• system

Averist 'Averist' adds an authentication layer to any CGI application written in Perl. It supports initial authentication through CGI (form), and it can use CGI (hidden form fields) or cookies for reauthentication after a configurable timeout. It can also use a DBM file, a flat file database, or an SQL database for storing session tickets for increased security. The username and password check at the initial authentication can be done via a DBM file, an LDAP directory, a NIS database, the passwd database, a passwd-style file, or an SQL database.

Cgipaf The 'cgipaf' package includes three CGI programs: passwd.cgi, which users update their password; viewmailcfg.cgi, which lets users view their current mail configuration; and mailcfg.cgi, which updates the mail configuration. All programs use PAM for user authentication. Users can run a script to update SAMBA passwords or NIS configuration when a password is changed. mailcfg.cgi creates a .procmailrc in the user's home directory. A user with too many invalid logins can be locked. The minimum and maximum UID can be set in the configuration file, so you can specify the range of UIDs that can use cgipaf.

Checkpassword-pam 'checkpassword-pam' is an implementation of a PAM- based checkpassword-compatible authentication program, but is more modern and administrator-friendly.

Cksfv 'ksfv' (Check SFV) creates simple file verification (.sfv) listings and tests existing .sfv files. It uses the crc32 checksum.

GNU SASL GNU SASL is a library that implements the IETF Simple Authentication and Security Layer (SASL) framework and some SASL mechanisms. SASL is used in network servers (e.g. IMAP, SMTP, etc.) to authentication peers, and can also integrity and privacy. This project was formerly know as 'libgsasl.'

GSKey GSkey is used to generate MD5 sums needed to authenticate with some proxy servers. It works like a known S/key generator, and uses GTK2 as the GUI.

Gensys 'genpass' generates decent random passwords as per user's requirements. Users can pass options specifying the total length, and type and minimum number of characters they want in their password.

Monkeysphere The Monkeysphere project's goal is to extend OpenPGP's web of trust to new areas of the Internet to help us securely identify each other while we work online. Specifically, monkeysphere currently offers a framework to leverage the OpenPGP web of trust for OpenSSH authentication. In other words, it allows you to use secure shell as you normally do, but to identify yourself and the servers you administer or connect to with your OpenPGP keys. OpenPGP keys are tracked via GnuPG, and monkeysphere manages the known_hosts and authorized_keys files used by OpenSSH for authentication, checking them for cryptographic validity.

Pam pwcheck The pam_pwcheck is a PAM module for password strength checking. It makes additional checks upon password changes, but it doesn't make the change itself. It only provides functionality for one PAM management group: password changing. This module works in the following manner: if enabled it calls at first the Cracklib routine to check the strength of the password; if crack likes the password, the module does an additional set of strength checks.

Parano Parano is a GNOME frontend for creating, editing, and checking MD5 and SFV files.