Rocksolid Light

Welcome to RetroBBS

mail  files  register  newsreader  groups  login

Message-ID:  

Genetics explains why you look like your father, and if you don't, why you should.

devel / comp.protocols.kerberos / Re: Looking for a "Kerberos Router"?

SubjectAuthor
o Re: Looking for a "Kerberos Router"?Yoann Gini

1
Re: Looking for a "Kerberos Router"?

<mailman.49.1710345768.2322.kerberos@mit.edu>

  copy mid

https://www.rocksolidbbs.com/devel/article-flat.php?id=501&group=comp.protocols.kerberos#501

  copy link   Newsgroups: comp.protocols.kerberos
Path: i2pn2.org!i2pn.org!usenet.blueworldhosting.com!diablo1.usenet.blueworldhosting.com!tncsrv06.tnetconsulting.net!.POSTED.mailman.mit.edu!not-for-mail
From: yoann.gini@gmail.com (Yoann Gini)
Newsgroups: comp.protocols.kerberos
Subject: Re: Looking for a "Kerberos Router"?
Date: Wed, 13 Mar 2024 17:02:33 +0100
Organization: TNet Consulting
Lines: 5
Message-ID: <mailman.49.1710345768.2322.kerberos@mit.edu>
References: <CD4C5157-C1DF-4AAB-9DA1-F54FEF928266@gmail.com>
<202403131416.42DEGRub016309@hedwig.cmf.nrl.navy.mil>
<581276BD-9D29-4D8C-A23E-8613493E378B@gmail.com>
<202403131452.42DEqTwP016604@hedwig.cmf.nrl.navy.mil>
<4DF7F808-676D-4226-AE6F-034995094DAC@gmail.com>
<202403131507.42DF7PwP016768@hedwig.cmf.nrl.navy.mil>
<31CAD52C-40A9-4C1B-B411-4957DB414ED3@gmail.com>
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.500.171.1.1\))
Content-Type: text/plain;
charset=us-ascii
Content-Transfer-Encoding: 8bit
Injection-Info: tncsrv06.tnetconsulting.net; posting-host="mailman.mit.edu:18.7.21.50";
logging-data="7890"; mail-complaints-to="newsmaster@tnetconsulting.net"
Cc: kerberos@mit.edu
To: Ken Hornstein <kenh@cmf.nrl.navy.mil>
DKIM-Filter: OpenDKIM Filter v2.11.0 unknown-host (unknown-jobid)
Authentication-Results: mailman.mit.edu;
dkim=pass (1024-bit key, unprotected) header.d=mitprod.onmicrosoft.com
header.i=@mitprod.onmicrosoft.com header.a=rsa-sha256
header.s=selector2-mitprod-onmicrosoft-com header.b=jDuS9TLH;
dkim=pass (2048-bit key,
unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256
header.s=20230601 header.b=O+26KFBS
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
b=YmjMgHnfnK51cllsSKMp6+h7ZOcrtBjCsu6r2nzPv+zyjacbQ4iH+EN9Dxk5OOdeGhdHdGl9CpmaFAfIdDb5VZ35/+XTIDREjPd50T0vAbPO5/4vUtnfJojuarK7CiiXt44zzKHKSANCTxdMehscOsUMbiXZPB5gKQmb7Uo6np9EV/1Vy5/mEUebh1AkirSau/9p1Elf7SHCXvDtlTQbESEqK7soceJlFB617brQucxgeeqHs6+It0oHCJFtzBgzn9vufRqTvaNj2XmQIh7Ogn8Rs3mI3sHffBy1wQIlCd8s2bm3MLSblGZUkwyRFb085i8oc/7xC5PCWGO1bCALig==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
s=arcselector9901;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
bh=D13fsUVeDfST9bWnIlZO7NoUBJpPdzqD6mr9qFNLtUI=;
b=Xr3zsJHFbnE2dg60ljK7Apv+acf1Ud1faD5zRlcI+JVA8MRWAQ6JLjxFVJ8cGD2LVB0RPpj7qWaC+Rd1PpBIthqY1Yoh4s/nbfKCalzugfgS7mkFU0r0khCCPh2JRxdUdPv/65AXmG3xKinYPdDlpElPxBJlANrxapOzXLhZCi4gTXlh2oHJEgrUrMJwJC2qbtrFRVStVwdTcpX84OGFAmykhfiAxzUUavWxyN/oWxnu2m59+isWil9NQA1MzFz+B/9GEtX3MttHrKXbMhPJwsI6iIp2VIF1H6ZZk+ZiX8xdHWkBgbZAEq5yroV3F6mYqZm0droNT/2WFufnyJirLw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is
209.85.128.44) smtp.rcpttodomain=mit.edu smtp.mailfrom=gmail.com; dmarc=pass
(p=none sp=quarantine pct=100) action=none header.from=gmail.com; dkim=pass
(signature was verified) header.d=gmail.com; arc=none (0)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=mitprod.onmicrosoft.com; s=selector2-mitprod-onmicrosoft-com;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=D13fsUVeDfST9bWnIlZO7NoUBJpPdzqD6mr9qFNLtUI=;
b=jDuS9TLHEop71PbulR85XKzpuW3KMLGn+agJ4POdSwTT4yE8mrt6u6gULuiQX9Q/pHno+xn2S9SrqA4+mJpvVhMCoPNCNMzjRuA4N+Drja6UYvjLy2aVi5uiJpad6EZTbnPOUAQpuVkJZRKlABCG+y3SqwkssQEWqe5D1loql+g=
Authentication-Results: spf=pass (sender IP is 209.85.128.44)
smtp.mailfrom=gmail.com; dkim=pass (signature was verified)
header.d=gmail.com;dmarc=pass action=none header.from=gmail.com;
Received-SPF: Pass (protection.outlook.com: domain of gmail.com designates
209.85.128.44 as permitted sender) receiver=protection.outlook.com;
client-ip=209.85.128.44; helo=mail-wm1-f44.google.com; pr=C
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=20230601; t=1710345765; x=1710950565; darn=mit.edu;
h=to:references:message-id:content-transfer-encoding:cc:date
:in-reply-to:from:subject:mime-version:from:to:cc:subject:date
:message-id:reply-to;
bh=D13fsUVeDfST9bWnIlZO7NoUBJpPdzqD6mr9qFNLtUI=;
b=O+26KFBSPBqRMH8af4MU3VU3Q23Orf+xYRTp0JovDKyeRh7dwaAbpTQeJZ7L3v94Tr
go3fqhV1KA9uRp6wz1ZE7gXw5xe0MTQfdRdHLdU+L5Kq6s/C2W57OxDfJKvx8Ky83m5T
nkaQf95c+bkdf2s1sl0ImcH6ZXxdsulloDCxnTxXGwipiMhDctoXn+flWiUud+S6UCTn
MPLp8jZhzLR9c9gOuO9YiVfM09kAdq2KZD+Ej/q14Nk07qqoEM9WF5plV8jb9yT2IfQm
bFuj2L2wz1cUGDC7cxe45DH5kYnqf0aHK0ocp3oPH2suSTfl7bBGHun6/vHxYf+QlDBH
kY2Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1710345765; x=1710950565;
h=to:references:message-id:content-transfer-encoding:cc:date
:in-reply-to:from:subject:mime-version:x-gm-message-state:from:to:cc
:subject:date:message-id:reply-to;
bh=D13fsUVeDfST9bWnIlZO7NoUBJpPdzqD6mr9qFNLtUI=;
b=k6NTHdM0VKzSbWlCoowJ5TZ0q+NBqKCzEB+qe/1rewAj0JXKfL6ilZG605ksKutcIo
E1qtnJBjIxpXdwH391Qycks62EZsqVHzz0vhj0GU5PGEFwGamgvCECchGavEuvQu06KL
wRLBl5UCYw0oSFUA0C12LwUEfZLXkkNgy/vTIkjKKzEwsPt8V5MsDA0NFwsgTB+rcNrs
ZPI3fAD5rY6XiGAgiODrWft9WrS0RFRlGDv42b9I3L2prVBasiAYLPj+Hbb2K6XsSGF8
EAUTwWQmoyRdJWFS6zMFEJYDtQY6Uadb4USeoKwj5JMIDLkilEz6X3hsgsk4xgUgfVXg
ciNw==
X-Gm-Message-State: AOJu0Yx8DNkUC3DwayaEsTMqeWih1OGByqWZwNsbVqoMegeRM4WdIcaf
l8FcoxbpuwKjvo+6FlHmDjSo5rc0QZRaJVWwwJNG6SUrqdW98PZr
X-Google-Smtp-Source: AGHT+IGmh1PP9MLmkAJIlX7lOD3XHzkawEuxccCrjWmnFehWn2los4qI0GDZ0NKfySDPA68YTZTk/Q==
X-Received: by 2002:a05:600c:4f0c:b0:413:e531:5a47 with SMTP id
l12-20020a05600c4f0c00b00413e5315a47mr315574wmq.4.1710345764770;
Wed, 13 Mar 2024 09:02:44 -0700 (PDT)
In-Reply-To: <202403131507.42DF7PwP016768@hedwig.cmf.nrl.navy.mil>
X-Mailer: Apple Mail (2.3774.500.171.1.1)
X-EOPAttributedMessage: 0
X-EOPTenantAttributedMessage: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b:0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: BN3PEPF0000B371:EE_|SA0PR01MB6475:EE_
X-MS-Office365-Filtering-Correlation-Id: e26439fd-2151-4ca2-f240-08dc437705fc
X-LD-Processed: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b,ExtAddr
X-MS-Exchange-AtpMessageProperties: SA
X-MS-Exchange-SenderADCheck: 0
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:209.85.128.44; CTRY:; LANG:en; SCL:1; SRV:;
IPV:NLI; SFV:NSPM; H:mail-wm1-f44.google.com; PTR:mail-wm1-f44.google.com;
CAT:NONE; SFS:(13230031)(61400799018)(376005); DIR:OUT; SFP:1102;
X-ExternalRecipientOutboundConnectors: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-Auto-Response-Suppress: DR, OOF, AutoReply
X-OriginatorOrg: mitprod.onmicrosoft.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Mar 2024 16:02:46.0400 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: e26439fd-2151-4ca2-f240-08dc437705fc
X-MS-Exchange-CrossTenant-Id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-AuthSource: BN3PEPF0000B371.namprd21.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA0PR01MB6475
X-MIME-Autoconverted: from quoted-printable to 8bit by mailman.mit.edu id
42DG2ltV1437504
X-BeenThere: kerberos@mit.edu
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: The Kerberos Authentication System Mailing List <kerberos.mit.edu>
List-Unsubscribe: <https://mailman.mit.edu/mailman/options/kerberos>,
<mailto:kerberos-request@mit.edu?subject=unsubscribe>
List-Archive: <http://mailman.mit.edu/pipermail/kerberos/>
List-Post: <mailto:kerberos@mit.edu>
List-Help: <mailto:kerberos-request@mit.edu?subject=help>
List-Subscribe: <https://mailman.mit.edu/mailman/listinfo/kerberos>,
<mailto:kerberos-request@mit.edu?subject=subscribe>
X-Mailman-Original-Message-ID: <31CAD52C-40A9-4C1B-B411-4957DB414ED3@gmail.com>
X-Mailman-Original-References: <CD4C5157-C1DF-4AAB-9DA1-F54FEF928266@gmail.com>
<202403131416.42DEGRub016309@hedwig.cmf.nrl.navy.mil>
<581276BD-9D29-4D8C-A23E-8613493E378B@gmail.com>
<202403131452.42DEqTwP016604@hedwig.cmf.nrl.navy.mil>
<4DF7F808-676D-4226-AE6F-034995094DAC@gmail.com>
<202403131507.42DF7PwP016768@hedwig.cmf.nrl.navy.mil>
 by: Yoann Gini - Wed, 13 Mar 2024 16:02 UTC

Looking at Apple documentation I see the support for something I had never heard of: Kerberos Key Distribution Center Proxy.

Looks like a solution to encapsulate Kerberos requests into an HTTPS.

Any experience on this here?

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor