Free auth software for linux

Kasablanca is an ftp client, written in c++, using the kde libraries. among its features are
currently encryption (auth tls) support, fxp, site bookmarks, and queued transfers.
Main features:
- ftps encryption via AUTH TLS, read here for more information regarding ftps.
- fxp (direct server to server transfer), supporting alternative mode.
- advanced bookmarking system.
- fast responsive multithreaded engine.
- concurrent connections to multiple hosts.
- interactive transfer queue, movable by drag and drop.
- small nifty features, like a skiplist.
Enhancements:
- changed: changed the local dir deletion functionality for a profane call to "rm".
- added: hour and minute is now taken into respect when sorting by date
- fixed: finally files bigger than 2gb should be supported on machines which support LFS
- fixed: crash when transfering files on a timed-out server
- changed: view of the transfered files
- added: a little fancyness and improvements
- fixed: percentage counting bug
- added: delete key shortcut bookmarks [r. stellingwerff]
- fixed: several bugs in ftplibpp

libstrophe is a library for XMPP client and component communication. Our goal is to build a library that is portable, usable quickly, reliable, well documented and that implements the XMPP specification.
Main features:
- XMPP compliant
- Platform agnostic
- TLS support (coming soon)
- SASL DIGEST-MD5 and SASL PLAIN authentication
- Legacy jabber authentication
- Resource binding
- Low-level miniDOM access for manipulating stanzas
- Event handers for timed events, stanza names and/or namespaces, stanza ids
- Threadsafe (coming soon)
- High-level stanza object manipulation and handling (coming soon)
- Full documentation (coming soon)
- Customizable logging and allocation facilities
- C++ binding (coming soon)
Enhancements:
- fix a bug in the fallback to jabber auth that prevented login to jabberd 1.4 servers
- Simplify access to the default loggers, and merge the basic_logging and basic examples
- draft C++ api

E/AS Automation Solutions is open source software system for help automate your solutions even for personal and/or corporate ones.
E/AS written on CLIP language (CA-Clipper dialect, compiler can be obtained from ITK.ru) and uses CODB (CLIP Object Database) as data storage.
Main features:
- client-server technology (both data and interface forms)
- component infrastructure with interaction between components by messages
- interface forms on XML
- MDI
E/AS contains in typical distribution:
- client software written on clip-ui library
- server software with wrapper for run as daemon
- maintenance tools: CODB console and component manager
- base (form, auth) and example (contact) components
Enhancements:
- completely rewrite code for implement E/AS architecture
- component infrastructure
- own server program instead COBRA
- maintenance tools: CODB console and component manager
- base and example components
- autoupdate views

LinuxMagic magic-smtpd is a drop in replacement for Dan Bernsteins qmail-smtpd, and was originally designed to be part of the LinuxMagic Magic Mail Server.
This opensource version has been released to allow others to benifit from its anti-spam components, and valid user checking to reduce server loads, and spam volumes.
It is designed to support stock qmail installations, qmail/vpopmail installations, as well as having database support.
Designed for ISP service, this will work for all mail servers large and small. Comments are welcome. Support for other mailers expected in the future.
Enhancements:
- A compilation bug for Red Hat/Mandrake, an SMTP AUTH problem with ext_prog, and a problem loading directories with a newline have been fixed.

Wikalong is a FirefoxExtension that embeds a wiki in the SideBar of your browser, indexed off the url of your current page.
It is probably most simply described as a wiki-margin for the internet.
What are some possible uses?
- Also See. Interactive pointers on where else to look
- Discussion. Just plain old commentary
- Notes. Plain old note taking
- A roaming blog. Use kwikis blog feature and you can edit, others can view your thoughts on a site by site basis
- Web Site development (dont forget you could restrict your wiki behind http auth)
- Developer Notes, todo lists on a page by page basis.
- Corporate Notes, suggestions to developers, things theyld like to see
- Support / Sales Tool, script or advice to support team (on a per page basis, you get the idea)
- Users install for self help
- Adblock. Recording of effective Adblock filters for the current page.
- Product reviews. Perhaps eventually with Amazon-like ratings?

BanFromLog is a shell script that examines your /var/log/auth.log and searches for the IP addresses of login attempts which use non-existent user names.

BanFromLog is configured for use with sqlite or MySQL.

Well is truth that if you have only an user, you dont need this but, when you have hundreds or even thousands, users, many of them could have an insecure password (even if you have warned them or have some special modification in the passwd command to prevent this).

You can receive other kinds of attacks via SSH port from those IPS which first attempted only a couple of illegal users. (illegal user: user that doesnt exists).
Your CPU can be slower with this kind of brute force attacks, even if you have put a maximum attempts or whatever, because this kind of attacks are done with many "zoombies".

You can prevent attacks in many servers if you use a centralized MySQL server, all servers insert ips of attackers and one attacker, probably will only attempt to one server.

smtpauth is a authenticating proxy for servers without SMTP AUTH.

Use smtpauth and stunnel programs to add SMTP AUTH (PLAIN, LOGIN) support to any SMTP server. Clients can authenticate over SSL port 465 or cleartext port 587, and authentication is fully logged via syslog.

Works with JBMail, Pegasus Mail, Mozilla Thunderbird, MS Outlook...

This software is really an interim solution until our favourite MTA(s) support SSL/TLS and SMTP AUTH directly. For now I prefer using external programs to provide this functionality rather than patching MTA source. I designed this software to work with my Postfix server, but smtpauth also works with sendmail and just about any other SMTP server.

Installation:

1. Compile and install binary.

make
Copy smtpauth to /usr/sbin, owned by root, mode 755

2. Create special user smtpauth with its own group, no login allowed.

Note that smtpauth will immediately exit with an error if invoked as root.
It must be run from a low privilege account, for security.

3. [For SSL, port 465] Configure stunnel.conf. Change domain for your site.

setuid = smtpauth
setgid = smtpauth
debug = auth.notice
client = no

[smtps]
accept = 465
exec = /usr/sbin/smtpauth
execargs = smtpauth domain 127.0.0.1

4. Configure /etc/smtpauth.conf

This file should only be readable by the smtpauth user, since it stores plain
passwords. It consists of single lines containing usernames and passwords with
whitespace separating. Blank lines and comment lines starting # are ignored.

user1 pass1
user2 pass2

5. [For SSL, port 465] Start up stunnel

This will create a server running as smtpauth on port smtps/465. When SMTP clients
connect (SSL/TLS) the smtpauth program is launched and provides authentication
service through to 127.0.0.1:25, as a proxy. Your actual SMTP server will accept
mail because that connection is local. The mail headers will include X-SMTP-AUTH
indicating the username. Success and failures will be logged via syslog.

6. [For cleartext, port 587] Configure cleartext submission service in inetd

Since inetd (when started with -W) also supports wrapping, the smtpauth proxy
can be run straight out of here too. Note that this is somewhat risky, because
there will be no SSL/TLS encryption on the submission port (587).

Again, change domain for your site (e.g. mail.yoursite.tld)

submission stream tcp nowait smtpauth /usr/sbin/smtpauth smtpauth domain 127.0.0.1

mod_auth_pam is an authentication module for the Apache Web-Server.

The PAM authentication module implements Basic authentication on top of the Pluggable Authentication Module library.

Thereby it supports standard unix passwd, shadow, NIS, SMB auth and radius (-> complete list of modules) authentication transparently and easily interchangeable, wherever the HTTP protocol allows it.