{"category":{"categoryid":447,"name":"sys-auth","summary":"The sys-auth category contains applications and libraries to support authentication and authorization facilities. Here belongs PAM modules, NSS modules and login apps."},"packages":[{"categoryid":447,"description":"Official authentication app for German ID cards and residence permits","firstseen":"2024-03-09T14:07:26.732663","name":"AusweisApp","packageid":77160},{"categoryid":447,"description":"Docker Registry 2 authentication server","firstseen":"2016-12-07T15:04:49.885310","name":"docker_auth","packageid":66225},{"categoryid":447,"description":"The systemd project's logind, extracted to a standalone package","firstseen":"2017-01-15T14:36:24.463510","name":"elogind","packageid":66433},{"categoryid":447,"description":"D-Bus service to access fingerprint readers","firstseen":"2010-10-27T14:33:49.887573","maintainer":"xmw@gentoo.org","maintainername":"Michael Weber","name":"fprintd","packageid":56443},{"categoryid":447,"description":"PAM Module for two step verification via mobile platform","firstseen":"2016-03-14T14:36:43.979227","maintainer":"vapier@gentoo.org","name":"google-authenticator","packageid":65140},{"categoryid":447,"description":"Set of scripts to manage google-auth setup on Gentoo Infra","firstseen":"2018-08-10T06:32:07.035601","name":"google-authenticator-wrappers","packageid":69322},{"categoryid":447,"description":"Library to add support for consumer fingerprint readers","firstseen":"2010-10-17T14:34:06.191459","maintainer":"xmw@gentoo.org","maintainername":"Michael Weber","name":"libfprint","packageid":56396},{"categoryid":447,"description":"libnss-cache is a library that serves nss lookups","firstseen":"2010-05-04T00:54:45.661860","maintainer":"xmw@gentoo.org","maintainername":"Michael Weber","name":"libnss-cache","packageid":53820},{"categoryid":447,"description":"NSS MySQL Library","firstseen":"2010-05-04T00:54:45.661860","maintainer":"hanno@gentoo.org","maintainername":"MySQL","name":"libnss-mysql","packageid":50788},{"categoryid":447,"description":"NSS module to provide NIS support","firstseen":"2017-11-17T23:54:03.844984","name":"libnss-nis","packageid":68462},{"categoryid":447,"description":"Name Service Switch module for use with PostgreSQL","firstseen":"2010-05-04T00:54:45.661860","maintainer":"pgsql-bugs@gentoo.org","maintainername":"PostgreSQL and Related Package Development","name":"libnss-pgsql","packageid":44897},{"categoryid":447,"description":"Yubico C low-level library","firstseen":"2010-10-24T14:34:06.297915","maintainer":"brant@gurganus.name","maintainername":"Brant Gurganus","name":"libyubikey","packageid":56419},{"categoryid":447,"description":"Microsoft Authentication Broker to access a corporate environment","firstseen":"2024-04-26T11:26:04.218902","name":"microsoft-identity-broker","packageid":77483},{"categoryid":447,"description":"An authentication service for creating and validating credentials","firstseen":"2010-11-15T14:41:25.529181","maintainer":"cluster@gentoo.org","maintainername":"Gentoo Cluster Project","name":"munge","packageid":56549,"summary":"MUNGE (MUNGE Uid 'N' Gid Emporium) is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having common users and groups. These hosts form a security realm that is defined by a shared cryptographic key. Clients within this security realm can create and validate credentials without the use of root privileges, reserved ports, or platform-specific methods."},{"categoryid":447,"description":"NSS plugin for finding Docker containers by their ID or name","firstseen":"2025-01-05T18:20:18.636240","name":"nss-docker-ng","packageid":78100},{"categoryid":447,"description":"Name Service Switch module for Multicast DNS","firstseen":"2010-05-04T00:54:45.661860","maintainer":"amynka@gentoo.org","name":"nss-mdns","packageid":53905},{"categoryid":447,"description":"Name Service Switch module for resolving the local hostname","firstseen":"2012-02-09T14:35:56.213838","maintainer":"freedesktop-bugs@gentoo.org","maintainername":"Gentoo Freedesktop Project","name":"nss-myhostname","packageid":58839,"summary":"nss-myhostname is a plugin for the GNU Name Service Switch (NSS) functionality of the GNU C Library (glibc) providing host name resolution for the locally configured system hostname as returned by gethostname(2). Various software relies on an always resolvable local host name. When using dynamic hostnames this is usually achieved by patching \/etc\/hosts at the same time as changing the host name. This however is not ideal since it requires a writable \/etc file system and is fragile because the file might be edited by the administrator at the same time. nss-myhostname simply returns all locally configure public IP addresses, or -- if none are configured -- the IPv4 address 127.0.0.2 (wich is on the local loopback) and the IPv6 address ::1 (which is the local host) for whatever system hostname is configured locally. Patching \/etc\/hosts is thus no longer necessary."},{"categoryid":447,"description":"NSS module for name lookups using LDAP","firstseen":"2012-07-24T14:41:06.956775","maintainer":"prometheanfire@gentoo.org","maintainername":"Matthew Thode","name":"nss-pam-ldapd","packageid":59613,"summary":"Provides a Name Service Switch (NSS) module that allows your LDAP server to provide user account, group, host name, alias, netgroup, and basically any other information that you would normally get from \/etc flat files or NIS. It also provides a Pluggable Authentication Module (PAM) to do authentication to an LDAP server. This is implemented using thin NSS and PAM modules which delegate to a dedicated service (nslcd) that queries the LDAP server with persistent connections, authentication, attribute translation, etc."},{"categoryid":447,"description":"NSS LDAP Module","firstseen":"2010-05-04T00:54:45.661860","maintainer":"ldap-bugs@gentoo.org","maintainername":"Please assign bugs to this mail alias.","name":"nss_ldap","packageid":54181},{"categoryid":447,"description":"Toolkit for using one-time password authentication with HOTP\/TOTP algorithms","firstseen":"2015-03-04T14:37:45.993928","maintainer":"robbat2@gentoo.org","maintainername":"Gentoo Sysadmin Project","name":"oath-toolkit","packageid":63162},{"categoryid":447,"description":"A One Time Password and S\/Key calculator for GTK+","firstseen":"2010-05-04T00:54:45.661860","maintainer":"ulm@gentoo.org","name":"otpcalc","packageid":51340,"summary":"otpCalc is an RFC2289 and RFC1760 compliant one time password calculator, written to use the GTK+ library for screen I\/O."},{"categoryid":447,"description":"PAM module to authenticate users via PostgreSQL","firstseen":"2010-05-04T00:54:45.661860","maintainer":"pam-bugs@gentoo.org","name":"pam-pgsql","packageid":44070},{"categoryid":447,"description":"PAM module for running scripts during authorization, password change and session","firstseen":"2012-11-30T14:35:57.009992","maintainer":"chutzpah@gentoo.org","maintainername":"Patrick McLean","name":"pam-script","packageid":60079},{"categoryid":447,"description":"PAM module for blacklisting hosts and users repeatedly failed authentication","firstseen":"2010-05-04T00:54:45.661860","maintainer":"swapon@gmail.com","maintainername":"Alessio Cassibba","name":"pam_abl","packageid":42988,"summary":"PAM module that provides auto blacklisting of hosts and users responsible for repeated failed authentication attempts. Once a host is blacklisted it is guaranteed to fail authentication even if the correct credentials are provided. Hosts which stop attempting to authenticate will, after a period of time, be un-blacklisted."},{"categoryid":447,"description":"pam module to allow password-storing in $HOME\/dotfiles","firstseen":"2010-05-04T00:54:45.661860","maintainer":"pam-bugs@gentoo.org","name":"pam_dotfile","packageid":50612},{"categoryid":447,"description":"Kerberos V PAM Authentication Module","firstseen":"2010-05-04T00:54:45.661860","maintainer":"pam-bugs@gentoo.org","maintainername":"Eray Aslan","name":"pam_krb5","packageid":53291},{"categoryid":447,"description":"Create per-user private temporary directories during login","firstseen":"2010-05-04T00:54:45.661860","maintainer":"swegener@gentoo.org","maintainername":"Pluggable Authentication Method maintenance","name":"pam_mktemp","packageid":44447},{"categoryid":447,"description":"A PAM module that can mount volumes for a user session","firstseen":"2010-05-04T00:54:45.661860","maintainer":"hanno@gentoo.org","maintainername":"Matt Turner","name":"pam_mount","packageid":42819},{"categoryid":447,"description":"pam_mysql is a module for pam to authenticate users with mysql","firstseen":"2010-05-04T00:54:45.661860","maintainer":"mysql-bugs@gentoo.org","maintainername":"MySQL","name":"pam_mysql","packageid":54003},{"categoryid":447,"description":"PAM module for authenticating against PKCS#11 tokens","firstseen":"2010-05-04T00:54:45.661860","maintainer":"crypto@gentoo.org","maintainername":"Crypto","name":"pam_p11","packageid":43835},{"categoryid":447,"description":"Allows you to require a special group or user to access a service","firstseen":"2010-05-04T00:54:45.661860","name":"pam_require","packageid":50076},{"categoryid":447,"description":"PAM interface for the S\/Key authentication system","firstseen":"2010-05-04T00:54:45.661860","maintainer":"ulm@gentoo.org","maintainername":"Pluggable Authentication Method maintenance","name":"pam_skey","packageid":46363},{"categoryid":447,"description":"PAM module for authenticating against an SMB (such as the Win_x families) server","firstseen":"2010-05-04T00:54:45.661860","maintainer":"samba@gentoo.org","maintainername":"Samba Team","name":"pam_smb","packageid":42016},{"categoryid":447,"description":"Simple module to authenticate users against their ssh-agent keys","firstseen":"2011-02-06T01:18:51.637433","maintainer":"pam-bugs@gentoo.org","name":"pam_ssh_agent_auth","packageid":56815},{"categoryid":447,"description":"PAM module for FIDO2 and U2F keys","firstseen":"2016-06-29T13:39:51.227664","maintainer":"shirk+gentoo@bitspin.org","maintainername":"René Köcher","name":"pam_u2f","packageid":65562},{"categoryid":447,"description":"Library for authenticating against PAM with a Yubikey","firstseen":"2013-04-23T13:36:26.020178","maintainer":"zerochaos@gentoo.org","maintainername":"Rick Farina","name":"pam_yubico","packageid":60670},{"categoryid":447,"description":"PAM base configuration files","firstseen":"2010-05-04T00:54:45.661860","maintainer":"pam-bugs@gentoo.org","name":"pambase","packageid":55230},{"categoryid":447,"description":"Password strength checking library (and PAM module)","firstseen":"2015-07-07T13:37:43.576093","maintainer":"pam-bugs@gentoo.org","name":"passwdqc","packageid":63850},{"categoryid":447,"description":"Policy framework for controlling privileges for system-wide services","firstseen":"2010-05-04T00:54:45.661860","maintainer":"freedesktop-bugs@gentoo.org","name":"polkit","packageid":46113},{"categoryid":447,"description":"Rules for polkit to add compatibility with pklocalauthority","firstseen":"2013-05-12T13:36:49.173084","maintainer":"freedesktop-bugs@gentoo.org","name":"polkit-pkla-compat","packageid":60747},{"categoryid":447,"description":"Qt wrapper around polkit-1 client libraries","firstseen":"2010-05-04T00:54:45.661860","maintainer":"kde@gentoo.org","maintainername":"Gentoo KDE Project","name":"polkit-qt","packageid":45852},{"categoryid":447,"description":"Sets up realtime scheduling","firstseen":"2011-06-08T14:38:16.236324","maintainer":"proaudio@gentoo.org","maintainername":"Gentoo ProAudio Project","name":"realtime-base","packageid":57505},{"categoryid":447,"description":"Realtime Policy and Watchdog Daemon","firstseen":"2010-05-04T00:54:45.661860","maintainer":"marecki@gentoo.org","maintainername":"Marek Szuba","name":"rtkit","packageid":52065,"summary":"RealtimeKit is a DBus service that provides applications with an interface to escalate their priority to realtime, without any special setup in rlimits, etc."},{"categoryid":447,"description":"Minimal seat management daemon and universal library","firstseen":"2020-11-11T17:36:15.874842","name":"seatd","packageid":72182},{"categoryid":447,"description":"Linux Port of OpenBSD Single-key Password System","firstseen":"2010-05-04T00:54:45.661860","maintainer":"ulm@gentoo.org","name":"skey","packageid":48053,"summary":"From RFC2289: One form of attack on networked computing systems is eavesdropping on network connections to obtain authentication information such as the login IDs and passwords of legitimate users. Once this information is captured, it can be used at a later time to gain access to the system. One-time password systems are designed to counter this type of attack, called a \"replay attack.\" The authentication system described in this document uses a secret pass-phrase to generate a sequence of one-time (single use) passwords. With this system, the user's secret pass-phrase never needs to cross the network at any time such as during authentication or during pass-phrase changes. Thus, it is not vulnerable to replay attacks. Added security is provided by the property that no secret information need be stored on any system, including the server being protected. The OTP system protects against external passive attacks against the authentication subsystem. It does not prevent a network eavesdropper from gaining access to private information and does not provide protection against either \"social engineering\" or active attacks."},{"categoryid":447,"description":"CLI and Python library for SoloKeys Solo 1","firstseen":"2022-04-20T16:48:16.242758","name":"solo1","packageid":74854,"summary":"The command-line tool 'solo1' provided by this package can be used to reset a SoloKeys Solo 1, set\/change the PIN, generate credentials, interact with the on-board TRNG, update the firmware, and more. See the output of 'solo1 key --help' for more information."},{"categoryid":447,"description":"Utility to securely retrieve an SSH public key and install it locally","firstseen":"2022-06-14T22:20:10.114302","name":"ssh-import-id","packageid":75063},{"categoryid":447,"description":"Utility to manage SSH public keys stored in LDAP","firstseen":"2018-08-04T20:57:45.404308","name":"ssh-ldap-pubkey","packageid":69314},{"categoryid":447,"description":"System Security Services Daemon provides access to identity and authentication","firstseen":"2011-08-15T14:35:19.613368","maintainer":"hwoarang@gentoo.org","maintainername":"Markos Chandras","name":"sssd","packageid":57761},{"categoryid":447,"description":"Support for the UPEK\/SGS Thomson fingerprint reader, common in Thinkpads","firstseen":"2010-05-04T00:54:45.661860","maintainer":"victor.quicksilver@gmail.com","maintainername":"Víctor Enríquez Miguel","name":"thinkfinger","packageid":45724},{"categoryid":447,"description":"Yubico C client library","firstseen":"2010-11-20T14:41:32.385838","maintainer":"brant@gurganus.name","maintainername":"Brant Gurganus","name":"ykclient","packageid":56567},{"categoryid":447,"description":"Library and tool for personalization of Yubico's YubiKey","firstseen":"2010-10-24T14:34:06.297915","maintainer":"brant@gurganus.name","maintainername":"Brant Gurganus","name":"ykpers","packageid":56416},{"categoryid":447,"description":"Command-line tool and p11-kit module for the YubiKey PIV application","firstseen":"2016-11-14T14:36:12.034184","name":"yubico-piv-tool","packageid":66096},{"categoryid":447,"description":"GUI for personalization of Yubico's YubiKey","firstseen":"2013-08-12T13:36:43.494410","maintainer":"wschlich@gentoo.org","maintainername":"Wolfram Schlich","name":"yubikey-personalization-gui","packageid":61095}]}