idcheck / News: Recent posts

Release 2.0.22

There are a number of fairly significant changes in this release. Implementors are strongly encouraged to test and provide feedback/bugs reports via sourceforge.

Many thanks to Kieran Whitbread for this version!

rpm (spec file):

• Added Gitlab CI configuration to automate idcheck packaging, contributed by Kieran Whitbread
• Updated spec for various minor rpm-lint complaints.
• Updated version number handling to support CI and allow packaging of pre-release/development builds with meaningful version numbers. Contributed by Kieran Whitbread... read more

CentOS7 x86_64 RPMs

Changes for 2.0.21

Happy 21st release!

There are a number if fairly significant changes in this release. Implementors
are strongly encouraged to test it and provide feedback/bugs via the sourceforge
tracking thingy.

IPv6 support:

This version supports IPv6. IPv6 is to be considered experimental.
To use this version, you will need to install:

Net::INET6Glue::INET_is_INET6;

on debian there is a libnet-inet6glue-perl package that adds this module.
Here's a link:... read more

Changes for 2.0.20

rpm (spec file): Build against apr-1 and set VERSION macro
(thanks to Stephen Grier).

mod_idcheck.c:

• Fix handling of IdcheckAllowRegex by Kieran Whitbread

pam_idcheck:

• Fix for nul characters added by recursive calls to apr_socket_recv.
• Fix DEBUG syslog line with no semi-colon.

Changes for 2.0.19
------------------

apache2 client:
- Added IdcheckRedirectURL that forces the idcheck server
to redirect elsewhere after authentication. You can set
it in any Location/Directory block:

<Directory ...>
Idcheck on
IdcheckRedirectURL http://somewhere.else.com/foo
...
</Directory>

Thanks to Matt Bernstein for this.

- Added IdcheckUserRequestHeader. This can be used to
set a custom header in the input table to contain
the username. Some web applications (e.g. SOGo) might
want this. e.g.... read more

Changes for 2.0.18 (very minor changes)

rpm (spec file): Define Group attribute for all the sub packages.

perl server: Fix spurious error message about invalid preregistration request.

I've also built the various idcheck RPMs for x86_64. If that doesn't suit your arch then you can build your own from the source tarball using rpmbuild -ta idcheck.X.tar.gz. Note that the idcheck RPMs have been split into several packages since 2.0.16.... read more

Contains a minor fix to pam_idcheck that is only useful if you are using pam_idcheck and have your server running on a strange TCP port.

Also the RPM spec file now creates several different packages instead of one.

Cookie based web authentication and single sign on system for largish intranets under a single domain where many, untrusted, people run their own web services. The server uses a private cookie scoped only for the client browser and the idcheck webserver.

Contains a fix to set IDCHECK_VALUE environment variable correctly on the first request after authentication.

Contains a fix for a seg fault if IDCHECK_VALUE environment variable used with mod_python. Thanks to David Pick.

Minor bugfixes and an improved tomcat client.

Support for tomcat fronted by apache2 client. Improved pam client + other minor changes.

Contains a security fix for the experimental pam_idcheck.so.

Support for apache 2.2.

2.0.8 contains a fix for users who want to protect php enabled pages with mod_idcheck.c and want apache logging to accuratly reflect the http response.