Hi Ralph,

No, I am an HTTPS client who is querying a server (in this case an IDS),
both running on Solaris. I am querying the IDS to get any intrusion
alarms that it has detected, and it looks like the vendor has mad the
IDS to use PAM.

I will check out and try the CURL options that you mentioned.

Thanks!

Bob :-)

________________________________

From: curl-library-bounces_at_cool.haxx.se
[mailto:curl-library-bounces_at_cool.haxx.se] On Behalf Of Ralph Mitchell
Sent: Friday, November 04, 2005 10:28 PM
To: libcurl development
Subject: Re: Anyone gotten PAM authentication to work?

From:

 
http://lists.canonical.org/pipermail/kragen-hacks/2002-February/000312.h
tml

  Here's a PAM module that lets you use HTTP Basic authentication
(ideally over HTTPS) to check user passwords.

It sounds to me like that's server-side, giving the server (yet another)
way to look up userids and passwords. The server would use Basic Auth
to get that info from the user.

So, are you on the server-side, or working on an app that hits such a
server?? If it's an app that's not part of the server, all you'd need
would be:

   CURLOPT_USERPWD to set the userid:password

   CURLOPT_HTTPAUTH to set the authentication method to CURLAUTH_BASIC

Ralph Mitchell

On 11/5/05, Bob Freitas <bfreitas_at_micromuse.com> wrote:

Hi Everyone,

I want to use libCurl on an application that needs PAM to authenticate.

I was wondering if anyone has had any success using PAM for the
authentication. I don't see it specifically in the supported features
section. I did see that pam_http module put together by Kragen Sitaker
referenced in a couple of places, but that is date to 2002, which in the
tech space is ancient stuff!

Just hoping someone has taken this path before and give me a quick
pointer? Does it work? Where there any gotchas?

Thanks!
Bob Freitas

 
Received on 2005-11-06