[JDEV] Single Sign on and stuff
donn at u.washington.edu
Fri Oct 5 14:48:46 CDT 2001
| _Arbitrary services_
| We will use the example of a jabber aware FTP server and client for this
There is already a single sign on, network authentication protocol
for this kind of thing. Even Microsoft does it. Some flavor of
Kerberos comes standard with Red Hat Linux, with NetBSD, with MacOS X,
SunOS I believe, Windows 2000.
See http://web.mit.edu/kerberos/www/ for more information on Kerberos.
In ftp's case, we're talking GSSAPI, a layer over Kerberos 5 that uses
the same credentials. Microsoft applications use SSPI along the same
lines. See http://www.ietf.org/rfc/rfc2228.txt for the general FTP
secure authentication model, into which AUTH GSSAPI fits.
Donn Cave, donn at u.washington.edu
More information about the JDev