1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/src/firefoxos/help/hman.html Fri Apr 26 19:10:52 2013 +0200
1.3 @@ -0,0 +1,158 @@
1.4 +<!DOCTYPE html>
1.5 +<!--
1.6 +OTPWCalc - One time password challenge response calculator client
1.7 +Copyright © 2013 Michael Schloh von Bennewitz <michael@schloh.com>
1.8 +
1.9 +OTPWCalc is free software: you can redistribute it and/or modify
1.10 +it under the terms of the European Union Public Licence, either
1.11 +version 1.1 of the license, or (at your option) any later version.
1.12 +
1.13 +OTPWCalc is distributed in the hope that it will be useful,
1.14 +but WITHOUT ANY WARRANTY; without even the implied warranty
1.15 +of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See
1.16 +the European Union Public License for more details.
1.17 +
1.18 +You should have received a copy of the European Union Public
1.19 +Licence along with OTPWCalc. If not, please refer to
1.20 +<http://joinup.ec.europa.eu/software/page/eupl/>.
1.21 +
1.22 +This file is part of project OTWPCalc, a one time password challenge
1.23 +response calculator client and is found at http://otpwcalc.europalab.com/
1.24 +
1.25 +hman.html: W3C HTML implementation
1.26 +-->
1.27 +
1.28 +<html>
1.29 + <head>
1.30 + <meta charset="utf-8">
1.31 + <meta name="viewport" content="width=device-width, initial-scale=1">
1.32 + <title>OTPWCalc</title>
1.33 + <link rel="stylesheet" href="../jquery.mobile/jquery.mobile-1.3.1.min.css" />
1.34 + <link rel="stylesheet" href="../main.css" />
1.35 + <script src="../jquery.core/jquery-1.9.1.js"></script>
1.36 + <script src="help.js"></script>
1.37 + <script src="../jquery.mobile/jquery.mobile-1.3.1.min.js"></script>
1.38 + </head>
1.39 + <body>
1.40 + <!-- Data attributes reserved by JQuery Mobile:
1.41 + data-theme, data-ajax, data-filter, data-icon, data-grid,
1.42 + data-rel, data-icon, data-url, data-role, and data-type -->
1.43 + <!-- Also data-dom-cache="true" -->
1.44 + <div data-role="page" class="type-interior oc-swipage" id="manpage">
1.45 + <div data-role="header" data-position="fixed" data-id="headman">
1.46 + <h1>OTPWCalc</h1>
1.47 + </div><!-- /header -->
1.48 + <div data-role="content">
1.49 + <div style="float: left;">User Commands</div>
1.50 + <div style="float: right;">OTPWCalc(1)</div>
1.51 + <div style="clear: both;"></div>
1.52 + <div style="margin-top: 1.5em; text-transform: uppercase; font-size: 0.75em;">Name</div>
1.53 + <div style="margin-left: 2em; font-size: 0.75em;">OTPWCalc - Client application for calculating responses to OTP challenges.</div>
1.54 + <div style="margin-top: 1.5em; text-transform: uppercase; font-size: 0.75em;">Synopsis</div>
1.55 + <div style="margin-left: 2em; font-size: 0.75em;">OTPWCalc [-h] [-v] [-V]</div>
1.56 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Description</div>
1.57 + <div style="margin-left: 2em; font-size: 0.75em;">Playing the role of a hardware
1.58 + token in a client server authentication system as described
1.59 + in RFC 2289, OTPWCalc calculates responses to incoming
1.60 + authentication challenges as typed in by the user.</div>
1.61 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Options</div>
1.62 + <div style="margin-left: 2em; font-size: 0.75em;">
1.63 + -h Display a brief help message and exit.<br />
1.64 + -v Print verbose text to the calling terminal.<br />
1.65 + -V Print the version number and exit.
1.66 + </div>
1.67 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Terms</div>
1.68 + <div style="margin-left: 2em; font-size: 0.75em;">Username</div>
1.69 + <div style="margin-left: 4em; font-size: 0.75em;">
1.70 + The name that the server knows. For example, 'albertc'.
1.71 + </div>
1.72 + <div style="margin-left: 2em; font-size: 0.75em;">Secret</div>
1.73 + <div style="margin-left: 4em; font-size: 0.75em;">
1.74 + A password, usually selected by the user, that is
1.75 + needed to gain access to the server. For example,
1.76 + 'Mysec2-pw'.
1.77 + </div>
1.78 + <div style="margin-left: 2em; font-size: 0.75em;">Challenge</div>
1.79 + <div style="margin-left: 4em; font-size: 0.75em;">
1.80 + Information printed by the server when it tries to
1.81 + authenticate a user. This information is needed by
1.82 + OTPWCalc to generate a proper response. For example,
1.83 + 'otp-md5 820 dinw23612'.
1.84 + </div>
1.85 + <div style="margin-left: 2em; font-size: 0.75em;">Response</div>
1.86 + <div style="margin-left: 4em; font-size: 0.75em;">
1.87 + Information generated from a challenge that is used
1.88 + by the server to authenticate the user. For example,
1.89 + 'BIEM ROSE JINX HARD BALL SKY NEW'.
1.90 + </div>
1.91 + <div style="margin-left: 2em; font-size: 0.75em;">Seed</div>
1.92 + <div style="margin-left: 4em; font-size: 0.75em;">
1.93 + Information used in conjunction with the secret and
1.94 + sequence number to compute the response. It allows
1.95 + the same secret to be used for multiple sequences
1.96 + by changing the seed, or for authentication to
1.97 + multiple servers by using different seeds.
1.98 + </div>
1.99 + <div style="margin-left: 2em; font-size: 0.75em;">Sequence #</div>
1.100 + <div style="margin-left: 4em; font-size: 0.75em;">
1.101 + A counter used to track key iterations. Each time
1.102 + a successful response is received by the server the
1.103 + sequence number is decremented. For example, 71.
1.104 + </div>
1.105 + <div style="margin-left: 2em; font-size: 0.75em;">Hash ID</div>
1.106 + <div style="margin-left: 4em; font-size: 0.75em;">
1.107 + Text that identifies the cryptographical algorithm
1.108 + used. The valid hash identifiers are 'otpmd4'
1.109 + corresponding to MD4, and 'otp-md5' corresponding
1.110 + to MD5.
1.111 + </div>
1.112 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Files</div>
1.113 + <div style="margin-left: 2em; font-size: 0.75em;">
1.114 + The application may store a cookie in a file used to
1.115 + restore the most recent settings. The location of this
1.116 + file (or arbitrary data structure) varies according to
1.117 + the operating system.
1.118 + </div>
1.119 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Bugs</div>
1.120 + <div style="margin-left: 2em; font-size: 0.75em;">This manual.</div>
1.121 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Security</div>
1.122 + <div style="margin-left: 2em; font-size: 0.75em;">
1.123 + All of the authentication strategies covered in the
1.124 + standards implemented by this application are vulnerable
1.125 + to man in the middle (MITM) attacks. The strategies can
1.126 + be combined with public key logic to defeat such attacks.
1.127 + </div>
1.128 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Standards</div>
1.129 + <div style="margin-left: 2em; font-size: 0.75em;">
1.130 + The IETF standards RFC 1760 (The S/KEY One-Time Password
1.131 + System) and RFC 2289 (A One-Time Password System) are
1.132 + implemented.
1.133 + </div>
1.134 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">See also</div>
1.135 + <div style="margin-left: 2em; font-size: 0.75em;">
1.136 + None. This is a self contained, stand alone application with
1.137 + no alias commands. It is unique in that it leverages open
1.138 + technologies like Javascript to run unmodified on a variety
1.139 + of operating systems.
1.140 + </div>
1.141 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Author</div>
1.142 + <div style="margin-left: 2em; font-size: 0.75em;">
1.143 + This application was written by <a href="//michael.schloh.com/">
1.144 + Michael Schloh von Bennewitz</a>.
1.145 + </div>
1.146 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Contact</div>
1.147 + <div style="margin-left: 2em; font-size: 0.75em;">
1.148 + Please refer to the <a href="//otpwcalc.europalab.com/">
1.149 + OTPWCalc homepage</a> for contact information.
1.150 + </div>
1.151 + <div style="margin-top: 1.25em; text-transform: uppercase; font-size: 0.75em;">Support</div>
1.152 + <div style="margin-left: 2em; font-size: 0.75em;">
1.153 + The <a href="//list.europalab.com/mailman/listinfo/otpwcalc/">
1.154 + OTPWCalc mailing list</a> provides information and answers to
1.155 + questions. Commercial support is provided by the
1.156 + <a href="mailto:michael@schloh.com">author</a>.
1.157 + </div>
1.158 + </div><!-- /content -->
1.159 + </div><!-- /page -->
1.160 +</body>
1.161 +</html>
