Return to BSD News archive
Newsgroups: comp.unix.bsd.freebsd.misc Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!nntp.coast.net!news-res.gsl.net!news.gsl.net!news.mathworks.com!enews.sgi.com!lll-winken.llnl.gov!uwm.edu!cs.utexas.edu!howland.erols.net!newsfeed.internetmci.com!in3.uu.net!quack!quack.kfu.com!nsayer From: nsayer@quack.kfu.com (Nick Sayer) Subject: 2.2-960801-SNAP telnet/telnetd SRA patches Message-ID: <nyq21XO@quack.kfu.com> Sender: news@quack.kfu.com (0000-News(0000)) Organization: The Duck Pond public unix, +1 408 249 9630, log in as guest. Date: Tue, 3 Sep 1996 08:59:45 UTC Lines: 25 I have been running a version of telnet/telnetd that has an authentication method called SRA on my Sun for a while now. So far as I can tell it basically exchanges the login/password info using Diffie-Hellmen, so you don't have to be running Kerberos or set up any keys beforehand to have fully encrypted sessions (one of the byproducts of the authentication is an encryption key). I saw RSA code in 2.2-960801-SNAP's libtelnet, but I couldn't get it to work. So I decided to see if I could shoehorn the SRA stuff into 2.2 instead. I have just finished an all-nighter adding the SRA authentication code to the libtelnet in 2.2-960801-SNAP. There are some rough edges still, but I have at least managed to do authenticated logins both between my Sun and to localhost. I haven't quite convinced it to go straight into an encrypted session after authentication yet, though. Does anyone care? :-) I can make patches if so. -- Nick Sayer <nsayer@quack.kfu.com> | "Dear Sexy Knickers. I don't half fancy N6QQQ @ N0ARY.#NORCAL.CA.USA.NOAM | you. Meet me at the lift at 5:30 and +1 408 249 9630, log in as 'guest' | we'll get it together." URL: http://www.kfu.com/~nsayer/ | -- Mr. Lucas