#1
  1. No Profile Picture
    Junior Member
    Devshed Newbie (0 - 499 posts)

    Join Date
    Feb 2003
    Posts
    4
    Rep Power
    0

    supported auth mechanisms in openssl


    I know openssl supports Public key authentiaction using keys/certificates..
    Does openssl support password authentication mechanism or any other auth mechanisms other than keys/certificates ?
    Any links/docs welcome
    Thanks in advance ..
  2. #2
  3. No Profile Picture
    Contributing User
    Devshed God 1st Plane (5500 - 5999 posts)

    Join Date
    Oct 2000
    Location
    Back in the real world.
    Posts
    5,966
    Rep Power
    191
    Im not an expert in SSL, but it would make no sense to me. SSL is about cryptography (where PK Authentication also belongs to), but passwords are not.
    I think you have to implement that in the layer above, the transmission of the password would be encrypted by the SSL engine then.

    eg. with php:
    Code:
    Pseudocode:
    if (!$CLIENT_CERTIFICATE && ! ($PHP_AUTH_USER && $PHP_AUTH_PW)) {
      Header("401 Authorization required");
      die();
    }

IMN logo majestic logo threadwatch logo seochat tools logo