Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/giggls/gssproxy

This project is about creating a gss-proxy protocol to allow proxying of GSSAPI context establishment and channel handling. Official repo at https://fedorahosted.org/gss-proxy/
https://github.com/giggls/gssproxy

Last synced: 6 days ago
JSON representation

This project is about creating a gss-proxy protocol to allow proxying of GSSAPI context establishment and channel handling. Official repo at https://fedorahosted.org/gss-proxy/

Host: GitHub
URL: https://github.com/giggls/gssproxy
Owner: giggls
Created: 2016-12-14T10:13:59.000Z (about 8 years ago)
Default Branch: master
Last Pushed: 2016-12-14T11:10:22.000Z (about 8 years ago)
Last Synced: 2024-11-17T07:15:14.104Z (2 months ago)
Language: C
Homepage:
Size: 605 KB
Stars: 1
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README

Awesome Lists containing this project

README

This is the gss-proxy project.

The goal is to have a GSS-API proxy, with standardizable protocol and a
[somewhat portable] reference client and server implementation. There
are several motivations for this some of which are:

- Kernel-mode GSS-API applications (CIFS, NFS, AFS, ...) need to be
able to leave all complexity of GSS_Init/Accept_sec_context() out of
the kernel by upcalling to a daemon that does all the dirty work.

- Isolation and privilege separation for user-mode applications. For
example: letting HTTP servers use but not see the keytabe entries for
HTTP/* principals for accepting security contexts.

- Possibly an ssh-agent-like SSH agent for GSS credentials -- a
gss-agent.

gss-proxy uses libverto for dealing with event loops. Note that you need to
have at least one libverto event library installed (e.g. libverto-tevent).