From: Markus S. <mar...@co...> - 2011-12-05 20:25:48
Attachments:
InterScan_Disclaimer.txt
|
> Here is the patch we have (against HEAD, but it will also apply on > 0.8.x) for a very simple Xauth authentication through a TCP socket. > I also attached a sample authentication daemon which can be used to play with it Thank you for this solution but it seems quite oversized. As already explained the authorization will take place on an integrated router device. Installing perl will eat up another 500K and I want to avoid to cross-compile a helper utility. As an alternative I experimented with netcat but it does not allow to launch shell scripts for a bidirectional communication. Maybe you could opt for a login/password exchange through a pipe? Best regards. Markus |
From: Christophe C. <chr...@ne...> - 2011-12-06 13:11:48
|
Hi, If you have inetd on your OpenWrt, you can replace this perl script by a simple shell script to handle authentication. Regards Christophe Le 05.12.2011 21:13, Markus Stockhausen a écrit : >> Here is the patch we have (against HEAD, but it will also apply on >> 0.8.x) for a very simple Xauth authentication through a TCP socket. >> I also attached a sample authentication daemon which can be used to >> play with it > > Thank you for this solution but it seems quite oversized. As already > explained > the authorization will take place on an integrated router device. > Installing perl > will eat up another 500K and I want to avoid to cross-compile a helper > utility. > As an alternative I experimented with netcat but it does not allow to > launch shell > scripts for a bidirectional communication. > > Maybe you could opt for a login/password exchange through a pipe? > > Best regards. > > Markus > > > ------------------------------------------------------------------------------ > All the data continuously generated in your IT infrastructure > contains a definitive record of customers, application performance, > security threats, fraudulent activity, and more. Splunk takes this > data and makes sense of it. IT sense. And common sense. > http://p.sf.net/sfu/splunk-novd2d > > > _______________________________________________ > Ipsec-tools-devel mailing list > Ips...@li... > https://lists.sourceforge.net/lists/listinfo/ipsec-tools-devel |
From: Markus S. <mar...@co...> - 2011-12-06 13:52:58
Attachments:
InterScan_Disclaimer.txt
|
>On Tue, 06 Dec 2011 13:53:08 +0100 > Christophe Carré <chr...@ne...> wrote: > Hi, > > If you have inetd on your OpenWrt, you can replace this perl script by a simple shell script to handle authentication. > > Regards > > Christophe Hello, I tried to evaluate that. Maybe I'm totally confused but I do not know how to create a script in bash that listens on a port. netcat seemed reasonable but did not help further. Do you have a better tip for me? Best regards. Markus |
From: VANHULLEBUS Y. <va...@fr...> - 2011-12-06 14:26:52
|
Hi. On Tue, Dec 06, 2011 at 02:52:44PM +0100, Markus Stockhausen wrote: > >On Tue, 06 Dec 2011 13:53:08 +0100 > >Christophe Carré <chr...@ne...> wrote: > >Hi, > > > >If you have inetd on your OpenWrt, you can replace this perl script by a > >simple shell script to handle authentication. > > > >Regards > > > >Christophe > > Hello, > > I tried to evaluate that. Maybe I'm totally confused but I do not know > how to create a script in bash that listens on a port. netcat seemed > reasonable but did not help further. > > Do you have a better tip for me? Inetd will do the network job for you, and your shell script will just have to read/write to stdin/stdout. Assumung inetd is already running on your device, it will probably be the cheapest solution. Yvan. |
From: Jaco K. <ja...@ul...> - 2011-12-06 15:06:08
|
Hi, You could use tcpserver from the ucspi-tcp package, something like: tcpserver 0.0.0.0 1234 /path/to/script Then in the script, stdin == read from network, stdout == write to network. So even a simple bash script will do :). Jaco On 12/06/11 15:52, Markus Stockhausen wrote: >> On Tue, 06 Dec 2011 13:53:08 +0100 >> Christophe Carré <chr...@ne...> wrote: >> Hi, >> >> If you have inetd on your OpenWrt, you can replace this perl script >> by a simple shell script to handle authentication. >> >> Regards >> >> Christophe > > Hello, > > I tried to evaluate that. Maybe I'm totally confused but I do not know > how to create a script in bash that listens on a port. netcat seemed > reasonable but did not help further. > > Do you have a better tip for me? > > Best regards. > > Markus > > > ------------------------------------------------------------------------------ > Cloud Services Checklist: Pricing and Packaging Optimization > This white paper is intended to serve as a reference, checklist and point of > discussion for anyone considering optimizing the pricing and packaging model > of a cloud services business. Read Now! > http://www.accelacomm.com/jaw/sfnl/114/51491232/ > > > _______________________________________________ > Ipsec-tools-devel mailing list > Ips...@li... > https://lists.sourceforge.net/lists/listinfo/ipsec-tools-devel |
From: Markus S. <mar...@co...> - 2011-12-06 14:08:56
Attachments:
InterScan_Disclaimer.txt
|
Thanks, that was the tool I was searching for. Spending too much time on one problem makes you blind for good alternatives. Regards. Markus On Tue, 06 Dec 2011 15:59:16 +0200 Jaco Kroon <ja...@ul...> wrote: Hi, You could use tcpserver from the ucspi-tcp package, something like: tcpserver 0.0.0.0 1234 /path/to/script Then in the script, stdin == read from network, stdout == write to network. So even a simple bash script will do :). Jaco On 12/06/11 15:52, Markus Stockhausen wrote: >> On Tue, 06 Dec 2011 13:53:08 +0100 >> Christophe Carré <chr...@ne...> wrote: >> Hi, >> >> If you have inetd on your OpenWrt, you can replace this perl script by a simple shell script to handle authentication. >> >> Regards >> >> Christophe > > Hello, > > I tried to evaluate that. Maybe I'm totally confused but I do not know > how to create a script in bash that listens on a port. netcat seemed > reasonable but did not help further. > > Do you have a better tip for me? > > Best regards. > > Markus > > > ------------------------------------------------------------------------------ > Cloud Services Checklist: Pricing and Packaging Optimization > This white paper is intended to serve as a reference, checklist and point of > discussion for anyone considering optimizing the pricing and packaging model > of a cloud services business. Read Now! > http://www.accelacomm.com/jaw/sfnl/114/51491232/ > > > _______________________________________________ > Ipsec-tools-devel mailing list > Ips...@li... > https://lists.sourceforge.net/lists/listinfo/ipsec-tools-devel |