DynChap provides an additional pseudo hardware token based authentication layer for PoPToP virtual private networks. The authentication uses the user's mobile phone to generate a hash that needs to be entered along with the user's password in a custom connection dialogue. Upon connecting, the VPN verifies the authenticity of the hash. The hash is generated from a serial (by default 32 printable characters) stored in the J2ME based mobile phone and the current time; the VPN server compares this hash against the serial and current time, minus or plus a small deviation (by default 2 minutes). If the username, password, and hash match, access is granted and the custom dialer is closed, the connection can now be controlled like an ordinary VPN connection.
|Licenses||BSD Revised GPL|
|Operating Systems||Windows POSIX Linux|
|Implementation||C Java J2ME Pascal|
Release Notes: This release integrates the stripdomain patch. It defaults to newer MD5 functions. An Apple OS X client plugin has been added. This release has server PPPD plugin version 0.30, Apple OS X client plugin version 0.30, Java mobile token version 0.22, and Windows client dialer version 0.20.
Release Notes: A bugfix was made for Nokia 6XXX.
Release Notes: A bugfix for Nokia phones without a time zone. Textual representation of hashes for smaller displays. XOR'ing the serial before writing and after reading.
No changes have been submitted for this release.