[19531] in Kerberos
Re: GSSAPI x Kerberos
daemon@ATHENA.MIT.EDU (silvio@gdora.com.br)
Wed Jul 9 12:05:27 2003
Message-ID: <1057754056.3f0c0bc83a9ac@webmail.relato.com.br>
Date: Wed, 9 Jul 2003 09:34:16 -0300
From: silvio@gdora.com.br
To: Sam Hartman <hartmans@mit.edu>
In-Reply-To: <8765mc1qel.fsf@luminous.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 8bit
cc: Kerberos Mailing <kerberos@mit.edu>
Errors-To: kerberos-bounces@mit.edu
Sam Hartman wrote:
> Implement using GSSAPI unless there is something that you need that
> cannot be provided by GSSAPI.
Thanks :-) I was going to do that but I asked here to be sure...
The SPNEGO draft on IETF (draft-brezak-spnego-http-04) explains how Microsoft
implemented the GSS over HTTP to IIS and IE, in the docs it says to use "WWW-
Authenticate: Negotiate", but the patch to Mozilla looks a little different, it
uses "GSS-Negotiate"... Since I'm going to do both server and client
modification to support Kerberos in this application I could use anything, what
you think that would be better the MS draft or the one the works on
Mozilla/Apache?
There's any other kind of GSS authentication over HTTP?
Thanks in advance,
Silvio Fonseca
Linux Consultant
-------------------------------------------------
Relato Consultoria de Informática
Rua Mto. João Gomes de Araújo, 106 cj. 42
Alto de Santana - São Paulo - SP
Telefones: (11) 6978-5253 / (11) 6978-5262
Fax: (11) 6971-3115
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
