[120] in Zephyr Mailing List
Re: dredging InterRealm Zephyr back out of the swamp...
daemon@ATHENA.MIT.EDU (Derek Atkins)
Thu Jun 2 20:22:33 1994
To: Victor Dmitri Schoeman <vs0r+@andrew.cmu.edu>
Cc: zephyr@MIT.EDU
In-Reply-To: Your message of "Thu, 02 Jun 1994 19:57:59 EDT."
<4hvb87W00WBn82hQcS@andrew.cmu.edu>
Date: Thu, 02 Jun 1994 20:21:42 -0400
From: Derek Atkins <warlord@MIT.EDU>
I have a hacked zhm (and clients) that allow cross-realm
communications. It is a gross hack that doesn't scale.
(Unfortunately the CMU hacks to the zephyr server, which scale much
better than my code, disallow subscriptions with tickets from a
"remote" realm, something I consider a bug :-)
Also, the CMU servers only provide transitive authentication, not true
authentication. This means that you have to trust the remote zephyr
server no to lie to you about the person who wants to authenticate to
your zephyr realm, since all interrealm subscriptions are done via the
zephyr.zephyr@REALM key.
FYI: My hack really isn't interrealm zephyr. It is more appropriately
named multi-realm zephyr, since it allows people on the host running
my zhm to talk to many different realms at the same time, and
subscribe to messages in and send messges to any realm that is known,
providing the authentication exists.
Dmitri: is there any way to remove the call to sender_in_realm()
from your zephyr server? ;-)
-derek
Derek Atkins, SB '93 MIT EE, G MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
Home page: http://www.mit.edu:8001/people/warlord/home_page.html
warlord@MIT.EDU PP-ASEL N1NWH PGP key available
