bernsten@phoenix.Princeton.EDU (Dan Bernstein) (05/05/89)
Does anyone have a working BSD 4.2 or 4.3 authentication daemon? As per RFC 931, the daemon should accept connections to port 113 (directly or through inetd), read a line of two numbers as in 6191,23 and output a line like one of 6191,23:USERID:UNIX:shmoe 6191,23:ERROR:NO-USER where ``shmoe'' is the owner (on the client machine) of the connection between port 6191 on the server and port 23 on the client. (Notes: (1) The example in the RFC has the client requesting ``23,6191'', which seems a bit weird. (2) Whitespace can be put anywhere. (3) All of \,: must be backslash-escaped within the userid. (4) The RFC doesn't specify very well what a ``line'' is but CR LF is probably safe.) ---Dan Bernstein, bernsten@phoenix.princeton.edu
stjohns@BEAST.DDN.MIL (Mike St. Johns) (05/06/89)
Amazing -- I wrote the "Authentication Protocol" about 4 years back, mainly as an intellectual excercise. I was interested in trying various different ways of tracking a "user" through a group of networked systems. I implemented (in PL1 !) a server and client for Multics, played around with it for a while, and haven't done anything with it since. I've had occassional queries about it, but not in the last 2 years or so.If I had it to do over again, I would have not bothered to put it on top of a telnet like connection, or to worry about making it work from a "telnet foo 113" type connection (the main reason for the wierd syntax -- I was lazy). I'd be interested in finding out if anyone ever implemented this, and what use they made of it. Mike