diff options
| author | b1galez <b1galez@fbcee277-3294-991b-8290-beb7048acdd6> | 2010-12-13 22:51:27 +0000 |
|---|---|---|
| committer | b1galez <b1galez@fbcee277-3294-991b-8290-beb7048acdd6> | 2010-12-13 22:51:27 +0000 |
| commit | ef9e713fbafc4020896fbcdad4289ac2bfd7c8e9 (patch) | |
| tree | d081fbaddc5ca85e0eaffd2273326d34cdbf03ad /README | |
| parent | Modified yubiserve.py to fix issue 1. (diff) | |
| download | yubico-yubiserve-ef9e713fbafc4020896fbcdad4289ac2bfd7c8e9.tar.gz yubico-yubiserve-ef9e713fbafc4020896fbcdad4289ac2bfd7c8e9.tar.bz2 yubico-yubiserve-ef9e713fbafc4020896fbcdad4289ac2bfd7c8e9.zip | |
Updated to version 2.9; added HTTPS/SSL support.
git-svn-id: http://yubico-yubiserve.googlecode.com/svn/trunk@24 fbcee277-3294-991b-8290-beb7048acdd6
Diffstat (limited to 'README')
| -rw-r--r-- | README | 14 |
1 files changed, 11 insertions, 3 deletions
@@ -1,8 +1,8 @@ - == Author & Version == YubiServe has been written by Alessio Periloso <mail *at* periloso.it> Version 1.0: 21/05/2010 Version 2.0: 19/11/2010 +Version 2.9: 13/12/2010 == Description == This simple service allows to authenticate Yubikeys and OATH Tokens using @@ -17,7 +17,11 @@ The project is divided into two parts: == Installation == Installation is pretty simple, you just have to install few python packages: Under Debian, you can run: -apt-get install python python-sqlite python-crypto +apt-get install python python-sqlite python-crypto python-openssl +Then, you have to generate the certificate for ssl validation, so if you don't +already have a certificate you have to issue the following command to self-sign +one: +openssl req -new -x509 -keyout yubiserve.pem -out yubiserve.pem -days 365 -nodes That's all, yes! After installing the needed packages, you just need to extract the files to a directory, add the keys and launch the server (or, if you prefer @@ -66,6 +70,11 @@ HTTP GET connections. The default listening port is 8000, the default listening ip is 0.0.0.0 (so you can connect to it from other machines). If you need it to answer only from local machine, you can change the ip to 127.0.0.1. +The ssl port is by default the next one, so if the http validation server +answers on port 8000, the ssl will answer on port 8001. +Anyway, everything is easily customizable modifying the yubiserve.py file +and changing the variables "yubiservePORT" for the HTTP port, "yubiserveSSLPORT" +for the SSL port, "yubiserveHOST" for the listening ip. When you connect to the server (ex. http://192.168.0.1:8000/), it will answer with a simple page, asking you Yubico Yubikeys OTPs or OATH/HOTP tokens. @@ -144,7 +153,6 @@ h=vYoG9Av8uG6OqVkmMFuANi4fyWw= == Final thoughts == - That's all. Pretty simple, huh? Of course you can add new keys while the server is already running, without needing it to restart, and of course multiple queries a time are allowed, that's why the server |