search for: webauth

Hello all, When I try to compile the mod_webauth module on CentOS 5, the dependencies for Kerberos fail. I have the Kerberos libs installed, which is what I assume it's complaining about. Ideas? Is there an RPM missing? Here's some of what I found: [root at localhost webauth-3.5.4]# ./configure checking for gcc... gcc checking...

Hi, Here I am trying something simple. My objective is to make ip rule fwmark command work :) Network Diagram: --- 192.168.250.197 (eth0) Linux Box (eth1) 192.168.8.88 -------------192.168.8.122 (eth0) Windows XP Client Configuration done on Linux Box:- (1) [root@g webauth]# iptables -t mangle -A PREROUTING -j MARK --set-mark 5 [root@g webauth]# iptables -t mangle -L Chain PREROUTING (policy ACCEPT) target prot opt source destination MARK all -- anywhere anywhere MARK set 0x5 (2) [root@g webauth]# ip rule add fwmark 5...

....0 from local routing table on (2) Add route to 192.168.8.0 at table test2 (3) Mark packet with --set-mark 3 at MANGLE OUTPUT table (4) Forward all packet marked 3 to table test2 using ip rule fwmark (5) Do a ip ro flush cache (6) Ping from 192.168.8.112 to 192.168.8.88 is successful [root@son-ag webauth]# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.250.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 192.168.250.254 0....

Hi, I am trying to achieve Stateless NAT with ip rule and ip route. Thanks to LARTC doc, I have done it :) But, I have a lot of client wanted access to Internet, setting up 2 rules for each of them is not desirable. For example I have 2 clients: Current setting: [root@son-ag webauth]# ip ru 0: from all lookup local 32760: from 192.168.8.113 lookup main map-to 192.168.250.113 32761: from 192.168.8.112 lookup main map-to 192.168.250.112 32766: from all lookup main 32767: from all lookup 253 [root@son-ag webauth]# ip route show table local | grep nat nat 192.168.250.113...

....htpasswds, php scripts, hidden directory listings, and so on. Database passwords can even be divulged in this way, since they are often stored in .php scripts, which can be read "in the raw" as files by other php scripts. What is the easiest method for dealing with this? I found http://webauth.stanford.edu/manual/mod/perchild.html but it does not seem to be compiled with the CentOS 5 apache, and I've read elsewhere that php has issues with mutlithreaded apache. Is there any easy way to isolate individual users, by either having apache setuid, or chrooting php scripts, or (ugh) a clea...

...   random data. >         ex.: echo 'jack@xiph.org|Jack Moffitt|password' | md5sum As written, this adds little security over sending the password in plaintext. Some folks at mit recently wrote a nice summary of how to do secure auth over the web: http://cookies.lcs.mit.edu/pubs/webauth:tr.pdf Unfortunately, anything more secure requires a shared secret, and thus and ssl-connection over which to send it. For example, running the contents of the update through the hash in addition to the password would let the server verify each update directly and block replay attacks. Of cou...

> That said, we are all aware of the fact that there is a large amount of > cheating going on, and therefore that number may not be so relevant nor > accurate. With the system I've outlined, there is no reason to cheat. There's no need to fake listener counts because it's not there. Certainly people can make this available in the 'description' field, ie, how