Hi Simon, On Wednesday, 25. January 2006 15:46, Simon Wilkinson wrote: > As I mentioned in the dim and distant past, I've been working on adding > native GSSAPI support to Authen::SASL::Perl, so that the > Authen::SASL::Cyrus module isn't required to use Kerberos. > > Attached is the first cut of this support. It supports GSSAPI > authentication, but does not implement security layers. This means that > whilst a connection to the server using this module is authenticated, it > is _not_ encrypted or integrity checked, and can be subverted by a man > in the middle attacker. > > Security layers are a work in progress, I suspect that they may require > some changes to the Authen::SASL::Perl framework, so I'll send them in > an additional patch.
I have committed the patch to Authen-SASL's SVN repository together with some kind of preliminary man page. Unformtunately my knowledge of GSSAPI is near to naught so I'd appreciate if you look over it, correct and extend it if possible. If there's a chance to get a test case as well that would be great too. Thanks for your help Peter -- Peter Marschall eMail: [EMAIL PROTECTED]
