Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

eurephia-auth(7) [debian man page]

eurephia-auth(7)														  eurephia-auth(7)

NAME

       eurephia-auth - The eurephia OpenVPN authentication plug-in

DESCRIPTION

       The eurephia-auth.so is a plug-in for OpenVPN.  It is loaded by providing the --plugin option in the OpenVPN configuration.

       The syntax for OpenVPN and eurephia-auth is:

	      plugin eurephia-auth.so "<plugin args> -- <DB args>"

       Please  notice  the  quotes  and  the double dash.  They are important markers so that the eurephia-auth module receives all arguments (the
       quotes) and that it knows when to pass on the rest of the arguments to the defined database driver, separated by  the  double  dash.   This
       manual  page  will  only  look at the <plugin args> options.  For the <DB args> options, refer to the corresponding database driver you are
       using.

OPTIONS

       --log-destination | -l
	      This defines how eurephia will do its logging. It can take a filename to log to a file. If the string is openvpn: it will  pass  the
	      log  data over to OpenVPN, which will combine the OpenVPN and eurephia logs. You can also log via syslog, by indicating syslog:. The
	      last possible special value is none: which will disable logging completely.

	      With syslog: you can also define which syslog facility the logging will go to. The default is to log to  the  user  facility.  Other
	      supported  facilities  are authpriv, daemon and local0 to local7. To send log data to the daemon the --log-destination argument need
	      to be

		  --log-destination syslog:daemon

       --log-level | -L
	      This defines how verbose the eurephia logging will be. The required argument to this option must be a numeric value, where  0  indi-
	      cates  as  little logging as possible - only giving informative messages, or a high value like 50 to give really verbose logging. In
	      general a log level less than 4 should be more than enough under normal circumstances.

	      NOTICE: The highest log level is 10, unless the eurephia-auth modules have been compiled with debug features.

       --database-interface | -i
	      This argument must have a full path to the eurephia database driver module. This defines which database interface eurephia will use.

OPENVPN CLIENTS

       The only change the OpenVPN clients needs to do is to add

	      auth-user-pass

       to their configuration file.  This instructs the OpenVPN client to ask for user name and password when starting the connection.

SEE ALSO

       eurephia-sqlite(8), eurephia_init(8)

AUTHOR

       Copyright (C) 2008-2010	David Sommerseth <dazo@users.sourceforge.net>

David Sommerseth						     July 2010							  eurephia-auth(7)

Check Out this Related Man Page

eurephia_init(7)														  eurephia_init(7)

NAME

       eurephia_init - Initialisation utility for the eurephia OpenVPN plug-in.

SYNOPSIS

       eurephia_init   [-V|--version]	[-h|--help]   [-l|--log   <filename>]	[-L|--log-level   <log	 level>]   [-N|--hash-threshold-min  <ms>]
       [-M|--hash-threshold-max <ms>] [-D|--database-driver <path>] [-d|--database-args <args>]

DESCRIPTION

       This utility is only supposed to be used when installing eurephia.  The purpose is to initialise the database eurephia will use, by setting
       up some standard configuration values and create an administrator account

OPTIONS

       Arguments used by eurephia_init:

       -V | --version
	      Show version information

       -h | --help
	      This help screen

       -l | --log <filename>
	      Log file for debugging

       -L | --log-level <log level>
	      Sets the log level

       -N | --hash-threshold-min <ms> : Benchmarking parameter, see below. Default 95ms

       -M | --hash-threshold-max <ms> : Benchmarking parameter, see below. Default 200ms

       -D | --database-driver <full path>
	      Full path to the database driver (Required)

       -d | --database-args <arguments>
	      Required database arguments for the driver (Required)

BENCHMARKING

       During the initialisation this utility will benchmark the CPU power by doing multiple SHA512 hash calculations.	This is to determinate the
       optimal rounds the password hashes should use on the current computer.  To make it more difficult to brute force passwords, eurephia imple-
       ments dynamic password hash rounds, based on a random number within in a given range.  This benchmark will suggest an optimal range.  To do
       this, two limits are defined, the shortest time and the longest time to be used for calculating a hash.	The default values  are  95ms  and
       200ms.

       If  you want to modify those thresholds, you can do so with the --hash-threshold-min and --hash-threshold-max options.  By increasing these
       numbers, you will allow the number of rounds to be increased.

AUTHOR

       Copyright (C) 2009-2010	David Sommerseth <dazo@users.sourceforge.net>

David Sommerseth						     June 2010							  eurephia_init(7)
Man Page