[19050] in Kerberos

home help back first fref pref prev next nref lref last post

Re: Web auth

daemon@ATHENA.MIT.EDU (Sebastian Konstanty Zdrojewski)
Sat Apr 12 05:22:09 2003

Message-ID: <3E97D9EB.5030709@neticon.it>
Date: Sat, 12 Apr 2003 11:18:35 +0200
From: Sebastian Konstanty Zdrojewski <s.zdrojewski@neticon.it>
MIME-Version: 1.0
To: Joey Collins <joeycollins@charter.net>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
cc: kerberos@mit.edu
Errors-To: kerberos-bounces@mit.edu

I was thinking to use this solution. The application will run on a Linux 
box phisically located in a DMZ with an SSL layer installed to prevent 
sending plain text passwords.

Thanks for suggestions, if anybody have some othe guideline, it would be 
really helpful.

Thanks again,

Sebastian

Joey Collins wrote:

>If you want to keep it simple, you can use kinit to get a
>ticket-granting-ticket.  using kinit, you need to supply a username and
>password, this gets packaged up in a KRB5 AP-REQ message to the domain
>controller.  kinit returns success if the username/password pair are
>valid, otherwise, authentication failure.  This scheme is predicated on
>the assumption you have the plaintext username and password, perhaps
>gathered over an ssl connection(https).
>
>
>Joey.
>
>Sebastian Konstanty Zdrojewski wrote:
>  
>
>>Hello,
>>
>>I am new to this mailing list, so please excuse me if I am saying
>>something stupid.
>>
>>I am working on an authentication system for a web application using the
>>Windows NT5 domain controller authentication database. Does anybody
>>already worked on this and can give me a suggestion?
>>
>>Thanks in advance,
>>--
>>
>>Sebastian Konstanty Zdrojewski
>>IT Analyst
>>
>>Neticon S.r.l.
>>via Valtellina, 16 - 20159 Milano
>>Tel. +39 02 68.80.731
>>FAX +39 02.60.85.70.41
>>Cell. +39 349.33.04.311
>>ICQ # 97334916
>>----------------------------------------------
>>Web: http://www.neticon.it/
>>E-mail: s.zdrojewski@neticon.it
>>
>>________________________________________________
>>Kerberos mailing list           Kerberos@mit.edu
>>https://mailman.mit.edu/mailman/listinfo/kerberos
>>    
>>
>
>  
>

-- 

Sebastian Konstanty Zdrojewski
IT Analyst

Neticon S.r.l.
via Valtellina, 16 - 20159 Milano
Tel. +39 02 68.80.731
FAX +39 02.60.85.70.41
Cell. +39 349.33.04.311
ICQ # 97334916
----------------------------------------------
Web: http://www.neticon.it/
E-mail: s.zdrojewski@neticon.it


________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
home help back first fref pref prev next nref lref last post