We're trying to set up a simplistic pop3 mail server that makes
a call to the AFS kaserver to verify a user and their password
instead of checking the local password file. We potentionally
have multiple pop3 clients to take care and thus can't customize
at the pop3 client end.
In my searches (and failed attempts) I haven't been able
to find the right set of methods to solve the problem within our
constraints.
The mail server (Sun Sparc 10, SunOS 4.1.3) must not run any portion
of the afs client code (and thus is independent of any AFS "events").
Thus far I've tried Kerberos V4 working with the 'kinit' command
for testing things out. The kinit command will talk the
AFS kaserver just fine in terms of exchanging info, but is
unable to decrypt the returned key properly (I speculate). I've
not been able to find a simple hack to the kerberos code to
resolve the string_to_key function differences.
The transarc approach using ka_AuthenticateGeneral won't work
because it's expecting "some portion" of the AFS client to be
present.
I'm looking for one of two solutions:
1) A hack to Kerberos V.4 for the right string to key conversion. I
don't want to run a kerberos server process either. Just pop client->
AFS kaserver.
2) Some other transarc call that can take care of the work without
the client code being present.
If I'm on mission impossible feel free to let me know that also.
Thanks for your help...
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ John L. Grant + [EMAIL PROTECTED] +
+ Faculty Associate for Engineering Computing + 704-547-4153 +
+ UNCC College of Engineering + 704-547-2352 FAX +
+ Charlotte, NC 28223 + Stress? What Stress? +
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
