Poppassd-ceti is a Qualcomm password changer daemon with PAM support and several other improvements. This program is intended to be a secure way to change system passwords via the Web. Methods that involve calling SUID programs directly from the Web are especially avoided. Poppassd strictly isolates the Web interface from actual password manipulations. The program contains no known security bugs that could be reported since it was released several years ago. This version uses PAM, which means you can do anything PAM can. Currently, there are PAM modules for almost all known authentication methods available.
The Obcode (obfuscated code) library allows the programmer to perform arithmetic (e.g. data encryption and serial code generation) over abstract, parameterizable, and obfuscated data types using special high-level operators. The resulting low-level binary code doesn't reveal any real data directly and is if not very difficult, then at least very boring to reverse engineer and trace.
The Clock randomness gathering daemon gathers system randomness from fluctuations between different physical high-frequency clocks in a system. The randomness is tested with FIPS, and if this is successful, fed into the system entropy pool. It is especially useful for systems without real hardware random number generators.
Recent vulnerability in poppassd_pam (GLSA 200501-22)
On January 13. 2005 Gentoo released GLSA 200501-22 with description of vulnerability in poppassd_pam. Thanks to Tierry Carrez from Gentoo we clarified that this problem is NOT present in poppassd-ceti. The mentioned poppassd_pam is another project. If you are using poppassd-ceti from this page, you're safe.
> Sorry, I do not get it. What's the use
> of this library? As it is covered by the
> GNU GPL, every program that links to it
> has to be distributed with full source
You're right as for the license, it needs to be LGPL probably.
I will sort it out in the next few versions as soon as I fully understand those licenses...