ORB authentication



   Hi!

I was wondering if ORBit does something like sending cookies around (like
MIT-MAGIC-COOKIEs on X11 server) or similar tricks to avoid people that
are sitting anywhere one the internet to use your filemanager?

Currently, I was thinking on how aRts (or KDE things with CORBA interface)
could work network transparent, but still secure. The only thing that came
to my mind to ensure security would be to patch mico to require such a
cookie thing (or a better kind of authentication). But if something like
that is used, it would be good if KDE and Gnome use the same dirty hack
(since doing things like that breaks IIOP compliance, I guess), so that
they at least remain interoperable.

The only thing I have found in the ORBit code is that you use (or support?)
TCP wrapper style security. While this effectively avoids some security
issues, it seems unsuitable to me for instance for real multi user
installations. I wouldn't want to run a scriptable filemanager in an
university pool, when I know that everybody with an account there just
needs an ssh and can access my files.

   Cu... Stefan
-- 
  -* Stefan Westerfeld, stefan@space.twc.de (PGP!), Hamburg/Germany
     KDE Developer, project infos at http://space.twc.de/~stefan/kde *-



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]