spfmilter 1.0.4

Grok Headline matches for spfmilter 1.0.4

spfmilter 1.0.6

spfmilter 1.0.6 07/14/2004 01:24 PM
A Sender Policy Framework (SPF) milter for Sendmail.
Grok Description matches for spfmilter 1.0.4
GrokA matches for spfmilter 1.0.4

SSH RSA/DSA authentication via the GUI

SSH RSA/DSA authentication via the GUI 12/16/2003 11:18 AM
As a UNIX system admin, I have about 40 servers that I need to access via SSH. I recently retired my good old first gen PowerBook g3 and bought myself a new pbook, which was my first experience with OS X (panther). I was thr...

Atom Authentication

Atom Authentication 12/17/2003 07:19 PM
Mark Pilgrim explains why the Atom developers are using a new kind of authentication scheme, and he explains why it's necessary.

Authentication >> The Power of Who

Authentication >> The Power of Who 01/06/2005 03:14 PM

The Cloud Allows SIM Authentication

The Cloud Allows SIM Authentication 05/04/2004 02:03 PM
The Cloud customers can now get authenticated using SIM cards: Transat Technologies enables the service. SIM-based authentication is already being used by some hotspots in Europe and is expected to be a widely used authentication method there. Because Europeans use GSM for their cell phone technologies, they are already used to the concept of the SIM card. They can use the same SIM card for their cell phones and for hotspot authentication, which also means they could receive a single bill for both services. Some of the early SIM-based WLAN authentication solutions are pretty rudimentary. They involve the user sending a message from their cell phone to get a code that allows them to access the WLAN. But the more sophisticated solutions include a SIM card reader on a laptop. The SIM card authenticates the user but also applies encryption and security to the communication between the client and the network. That is likely the offering Transat is delivering for The Cloud. At the CTIA Wireless I.T. show last fall I talked to a handful of companies that are touting SIM-based authentication tools, including some of the big SIM card makers. While they're looking for a U.S. market, most weren't terribly bullish that the authentication method would take off here because people aren't widely used to the concept of using SIM cards. Even GSM users in the U.S. don't often realize that they have a SIM card....

Delegated Authentication

Delegated Authentication 06/17/2005 07:10 PM

Delegated authentication differs from federated authentication model in that the authentication authority delegates authentication yet again. It's a double-sided star system where the authentication authorities sits in the middle acting as a directory of sort.

Delegated authentication model is not appropriate for weak authentication uses. So I doubt we'll see banks pushing customers to some federated authentication authority whenever they click on the sign-in button. Where it makes sense is protecting high-value transactions with strong and/or multi-party multi-factor authentication.

As cryptic as what I wrote above may sound, the net effect is that a) consumers will be able to buy their favorite secure token at Fry's and use it to protect their bank account without worrying about whether the bank supports the device or not, b) banks of all sizes will be able to support a wide range of authentication methods cheaply, and c) strong authentication vendors will be able to market their products and services directly to consumers.

The biggest hurdle for delegated authentication is that the cost of fraud risk have already become part of the balance sheet. Risk exposure is aggregated and taxed horizontally so that finanical risk is shared as part of operating cost. The net result is that individual customers face minimal financial risk which leaves them little incentives to be interested in strong authentication unless they are required to use them by their banks.

The cost of authentication

The cost of authentication 06/18/2004 04:52 AM
Last issue we talked about two-factor authentication and I described such a scheme used by a Swedish bank (see link below). The bank requires a user to enter a unique identifier - a national ID number, similar to a U.S. Social Security number, a four digit PIN, and a one-time code that's revealed by scratching off the covering on one cell of a 50-cell card (similar to a scratch-off lottery ticket). I then posed the question: "Is that secure enough?" which can only, I believe, can be answered: "It depends."

Trackback authentication

Trackback authentication 03/06/2004 02:09 AM

Jacques Distler: The anonymous nature of the internet makes the problem of “identity” a hard one. In physics, when we encounter an intractably-hard problem, our most frequent dodge is to redefine the problem to one which admits a solution, and hope that the result is a “good-enough” stand-in for the original problem. In that spirit, I (re)defined the problem as reliably associating comments posted with the websites of the commenters.

Just a suggestion: a lesser, but very much related and much more tractable, problem is trackbacks.  The reason why it is more tractable is that the trackbacks are issued by software which could reasonably be expected to have direct access to your weblog's private keys.  This could make signing totally automatic - simply check a box once, and your template could be updated and all future trackbacks would be automatically signed.

The signatures could be passed as a new CGI parameter or as a HTTP header.  Neither would likely affect any existing software that wasn't expecting this information.

Once trackback signing is widely enough adopted, people may feel comfortable turning off the ability to accept unsigned trackbacks.  And then much of the infrastructure will be in place to tackle the harder, and more important problem, of comment signing.

The key nut to crack there is to make it easy and painless to sign a comment.

iTunes 4.5 Authentication Cracked

iTunes 4.5 Authentication Cracked 04/29/2004 12:04 PM

ASP.NET Forms Authentication Best
Practices

ASP.NET Forms Authentication Best
Practices 04/14/2004 09:11 PM
DDJ Apr 15 2004 1:24AM GMT

Maypole-Authentication-UserSessionCookie
-1.4

Maypole-Authentication-UserSessionCookie
-1.4 08/30/2004 05:56 PM

Maypole-Authentication-Abstract-0.4

Maypole-Authentication-Abstract-0.4 08/12/2004 09:52 AM

The Kerberos Authentication Process

The Kerberos Authentication Process 05/21/2004 05:21 PM

Maypole-Authentication-UserSessionCookie
-1.3

Maypole-Authentication-UserSessionCookie
-1.3 04/29/2004 05:48 PM

Maypole-Authentication-Abstract-0.5

Maypole-Authentication-Abstract-0.5 08/29/2004 06:06 PM

SMB Authentication and username shortcut

SMB Authentication and username shortcut 06/22/2004 09:14 AM
I don't know how I didn't realize this earlier, this might be pretty obvious to everyone ... but when browsing the network on 10.3, (possibly works for all versions of MacOS X) entering a workgroup, then opening a windows sh...

SSH Authentication: A Basic Overview

SSH Authentication: A Basic Overview 08/11/2004 01:50 PM

Linpha 0.9.4: authentication bypass

Linpha 0.9.4: authentication bypass 07/29/2004 03:31 PM
Rubén Molina (Jul 29 2004)

Sender authentication is coming

Sender authentication is coming 07/05/2004 04:30 AM
A cure for spam? Sadly not

MySQL Authentication Bypass

MySQL Authentication Bypass 07/05/2004 02:38 PM
NGSSoftware Insight Security Research (Jul 05 2004)

Re: authentication bug in KAME's racoon

Re: authentication bug in KAME's racoon 06/15/2004 01:41 PM
Michal Ludvig (Jun 15 2004)

authentication bug in KAME's racoon

authentication bug in KAME's racoon 06/14/2004 09:13 PM
Thomas Walpuski (Jun 14 2004)

jSai :Servlet Authentication

jSai :Servlet Authentication 06/07/2004 11:52 PM
LDAP Testing.

Integrated Windows Authentication

Integrated Windows Authentication 06/05/2004 04:10 AM

Jaws 0.4: authentication bypass

Jaws 0.4: authentication bypass 07/30/2004 03:19 AM
Rubén Molina (Jul 29 2004)

Configuring IIS Authentication for Web
Admin

Configuring IIS Authentication for Web
Admin 08/01/2004 09:34 PM

Authentication and Authorization for
Webapps

Authentication and Authorization for
Webapps 08/02/2004 01:56 PM

Top Tip: Linux login authentication?

Top Tip: Linux login authentication? 08/09/2004 11:17 AM
How does Linux handle the Windows equivalent of domain logins? I'm looking into using Linux in the computer lab of a small school which has approximately 20 computers. I'm familiar with Windows domains and its logon security, but am not sure how it works in the Linux world? Are there domain controllers? How is logon authentication handled?

Open Source 802.1X Authentication

Open Source 802.1X Authentication 04/14/2004 03:46 PM
Matthew Gast has filed a series of four articles on using 802.1X with open-source projects to create PEAP authenticated networks: Matthew is one of the best writers on the subject of enterprise authentication, and author of 802.11 Wireless Networks: The Definitive Guide. His four articles at O'Reilly Network walk through his efforts to make the open-source xsupplicant 802.1X client create a successful PEAP (Protected EAP) tunnel and authentication with dynamic WEP keys. His efforts helped patch an incompatibility between xsupplicant and Microsoft's IAS server, making xsupplicant a more widely usable product. [link via Douglas Burns]...

spfmilter 1.0.4

The following phrases have been identified by the grok system as matching this entry: spfmilter authentication