[Previous] [Next] [Index]
[Thread]
Re: Apache authentication module
On Thu, 25 Jul 1996, Jeremey Barrett wrote:
> Date: Thu, 25 Jul 1996 17:57:36 -0700 (PDT)
> From: Jeremey Barrett <jeremey@forequest.com>
> To: scott hollatz <shollatz@d.umn.edu>
> Cc: www-security@ns2.rutgers.edu
> Subject: Re: Apache authentication module
>
> -----BEGIN PGP SIGNED MESSAGE-----
>
> I wrote a quick module to do authentication using a Sybase database...
> it was pretty simple... I just grabbed the DBM auth module and rewrote
> the necessary parts. As I recall I only had to implement 2 functions and
> dummy out a third... lemme know if you want more specifics...
>
> On Thu, 25 Jul 1996, scott hollatz wrote:
>
> > This is not about cookies! :-)
> >
> > We have been considering writing an authentication module for the Apache HTTP
> > server which queries an authentication server (tacacs) on a different host.
We have a cool one that uses RADIUS so that you don't have to deal with
all the intricacies of whta the underlying sysmte is.
RADIUS has a lot of support, and you can run radiusd on just about
anything.
Alternatively, you can use certificates :-)
> >
> > There are two approaches: write a correct module following the Apache API or
> > hack the server code to open a pipe to a tacacs client.
> >
> > I am favoring the latter because the Apache API documentation isn't clear.
> > In either case, it's not clear to me (after 20 minutes of looking) where
> > the Apache Basic authentication begins in the source code (I have a good idea).
> >
> > Ideally, I would like to create a new authentication type: AuthType tacacs .
> >
> > My question to the list is: does anyone have experience writing modules
> > (in particular, authentication modules) for the Apache HTTP server?
> >
> > Any information is appreciated.
> > --
> > scott hollatz internet shollatz@d.umn.edu
> > information services, systems telephone +1 218 726 8851
> > university of minnesota-duluth mn usa fax +1 218 726 7674
> >
> >
>
> - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> Jeremey Barrett
> Senior Software Engineer jeremey@forequest.com
> The ForeQuest Company http://www.forequest.com/
>
> "less is more."
> -- Mies van de Rohe.
>
> Ken Thompson has an automobile which he helped design. Unlike most
> automobiles, it has neither speedometer, nor gas gage, nor any of the
> numerous idiot lights which plague the modern driver. Rather, if the
> driver makes any mistake, a giant "?" lights up in the center of the
> dashboard. "The experienced driver", he says, "will usually know
> what's wrong."
>
> -- 'fortune` output
>
> -----BEGIN PGP SIGNATURE-----
> Version: 2.6.2
>
> iQCVAwUBMfgXoi/fy+vkqMxNAQH4igP/ULOBQtSCpHAlfYqb3LChXlQC82K/9xvm
> +4eXZcjE1v0SWZ9FpwIN1I+EtweBab3xlPVowBdBpv7O5NJ/fXyuYXvEibRII1wD
> ZNQJcdIvyf+Alo/29UTEOHw+gSf7gDZmsXvU1fxrtO2gxIhp3g1mOFCXZl2b05gl
> qfgHOjfqt5c=
> =mswW
> -----END PGP SIGNATURE-----
>
--
Pat Richard / patr@xcert.com
----
Run your own CA and secure your Virtual Community:
http://www.xcert.com
References: