Received: by taz.hyperreal.com (8.6.12/8.6.5) id BAA17740; Sun, 7 Jan 1996 01:16:18 -0800 Received: from arachnet.algroup.co.uk by taz.hyperreal.com (8.6.12/8.6.5) with SMTP id BAA17735; Sun, 7 Jan 1996 01:16:10 -0800 Received: from heap.ben.algroup.co.uk by arachnet.algroup.co.uk id aa07012; 7 Jan 96 9:15 GMT Received: from gonzo.ben.algroup.co.uk by heap.ben.algroup.co.uk id aa16171; 7 Jan 96 8:54 GMT Subject: Re: MD5 To: new-httpd@hyperreal.com Date: Sun, 7 Jan 1996 08:56:17 +0000 (GMT) From: Ben Laurie In-Reply-To: from "Alexei Kosut" at Jan 6, 96 08:09:49 pm X-Mailer: ELM [version 2.4 PL24 PGP2] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Content-Length: 1912 Message-ID: <9601070856.aa13849@gonzo.ben.algroup.co.uk> Sender: owner-new-httpd@apache.org Precedence: bulk Reply-To: new-httpd@apache.org > > On Sat, 6 Jan 1996, Brian Behlendorf wrote: > > > Well, you mean one would have to write a separate module for each > > (authenticationtype,passworddatabase) pair. This actually isn't true - > > mod_auth and mod_dbm_auth *could* be combined, since they use different > > configuration options. At least, I've never had a problem compiling with > > both turned on. So, you could do a mod_auth_md5 and have config options > > for using either DBM files, flat files, or even mSQL in the same module. > > > > Or am I missing something? > > No, you're not missing anything. My point was that the auth modules are > authentication-type-dependent. It'd be nice if one could write a module > that did authentication without having to worry about authentication type > - that should all be built into Apache, and the modules should have some > generic functions to call that will work with any authentication scheme, > so we don't need different versions of the modules for each type. This is > especially important if we want to support some kind of security > negotiation in the future. Apache-SSL actually fakes Basic authentication, but uses the "one-line" X509 as the user name. This was done to avoid having to rewrite the authentication code. So, I'd agree, an authentication support module would be very nice. Cheers, Ben. > > Doesn't that make sense? > > --/ Alexei Kosut /--------/ Lefler on IRC > ----------------------------/ > The viewpoints expressed above are entirely false, and in no way > represent Alexei Kosut nor any other person or entity. /-------------- > > -- Ben Laurie Phone: +44 (181) 994 6435 Freelance Consultant Fax: +44 (181) 994 6472 and Technical Director Email: ben@algroup.co.uk A.L. Digital Ltd, URL: http://www.algroup.co.uk London, England.