1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
|
Based on [original work by Kevin Cernekee](https://github.com/cernekee/stoken).
stoken - Software Token for Linux/UNIX
======================================
stoken is a tokencode generator compatible with RSA SecurID 128-bit (AES)
tokens. The project includes several components:
* A simple command line interface (CLI) used to manage and manipulate tokens
* A GTK+ GUI with cut&paste functionality
* A shared library allowing other software to generate tokencodes on demand
* Also permits the blind or other disabled people to jump these hurdles or systems.
## Building on Linux
### Dependencies
* libtomcrypt or nettle
* libxml2
* libgtk3.0 (required for stoken-gui only)
If you are building from Git, you'll need to install autoconf / automake /
libtool, and run autogen.sh first. This is not necessary if building from
a released source tarball.
On Debian or Ubuntu, this should satisfy most/all dependencies:
sudo apt-get install libgtk-3-dev libtomcrypt-dev libxml2-dev autoconf automake libtool build-essential
### Compile instructions
./autogen.sh # from Git only; not necessary if building from tarball
./configure
make
make check
make install
## Usage
First, import a token from a raw string or an "sdtid" XML file:
stoken import --token 2000123456...
stoken import --token com.rsa.securid.iphone://ctf?ctfData=2000123456...
stoken import --file mytoken.sdtid
This will prompt for an optional password, so that your seed is encrypted
on disk.
Next, use the CLI or GUI to show the current tokencode:
stoken tokencode
stoken-gui &
You can view the next-tokencode using the following:
stoken tokencode --next
If your token requires a PIN, stoken will prompt for it. You can use
<code>stoken setpin</code> to cache your PIN in <code>~/.stokenrc</code>.
This is much less secure, but may be useful for automation.
Modern versions of OpenConnect link against libstoken and can send an
autogenerated tokencode as the password. Import your token using the
above instructions, then:
openconnect -u USERNAME --token-mode=rsa HOSTNAME
See the man pages for additional details: stoken(1), stoken-gui(1)
See examples/ and src/stoken.h for information on using the shared library
interface (libstoken) to generate tokencodes from other applications.
## Screenshots
<table border=1 cellpadding=15>
<tr align="center">
<td><code>stoken-gui</code>
<td><code>stoken-gui --small</code>
<tr valign="top">
<td><img src="misc/screenshot-0.png">
<td><img src="misc/screenshot-1.png">
</table>
## Building on other platforms
### Mac OS X
#### Initial setup
The following configuration was tested under Mavericks 10.9.5; other
variants may work too:
* Install gcc/make/headers: <code>xcode-select --install</code>
* Install [Homebrew](http://brew.sh/)
* Install [XQuartz](http://xquartz.macosforge.org/) to support GTK+3
* Use Homebrew to satisfy dependencies: <code>brew install git autoconf
automake libtool nettle pkg-config gtk+3 gnome-icon-theme
hicolor-icon-theme</code>
* Use OSX's builtin libxml2 (no action needed)
#### Compiling
Note that GNU libtool is called <code>glibtool</code> to avoid collisions
with Apple's libtool program:
export LIBTOOL=glibtool
git clone git://github.com/cernekee/stoken
cd stoken
./autogen.sh
./configure
make
make check
make install
### Experimental Windows build
As of v0.8, stoken can be built for Windows using the [MinGW cross toolchain
on Fedora](http://fedoraproject.org/wiki/MinGW). This is not tested
or maintained regularly.
#### Initial setup
On a Fedora 20 PC (other versions may work as well), install the build
dependencies:
yum groupinstall "Development Tools"
yum install git autoconf automake libtool mingw32-gnutls mingw32-libxml2 mingw32-gtk3
#### Compiling
git clone git://github.com/cernekee/stoken
cd stoken
./autogen.sh
mingw32-configure
make winpkg
If all goes well, you should be able to copy <code>winpkg.zip</code> to
a Windows PC and run <code>stoken.exe</code> or <code>stoken-gui.exe</code>.
#### TODO
Several items are known to be missing or broken on the Windows build:
* Default home directory is probably incorrect
* No installer
* The GUI requires its assets to be in the current directory
* Password entry is not masked
* <code>stoken --random</code> flag
* No charset translation on filenames
## Misc
Author: Kevin Cernekee <cernekee@gmail.com>
License: LGPLv2.1+
stoken is a hobbyist project, not affiliated with or endorsed by
RSA Security.
|
