This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/db-wg@ripe.net/
[db-wg] Update of mntner object with mixed authentication
- Previous message (by thread): [db-wg] Update of mntner object with mixed authentication
- Next message (by thread): [db-wg] Syntax of the "nserver:" Attribute in Domain Objects
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Alexander Gall
gall at switch.ch
Wed Jul 18 14:54:54 CEST 2012
Hello Wilfried Long time no seen :) On Wed, 18 Jul 2012 14:32:11 +0200, "Wilfried Woeber, UniVie/ACOnet" <Woeber at CC.UniVie.ac.at> said: > Alexander Gall wrote: >> I'm trying to update the "shared" 6to4 anycast-relay maintainer object >> RFC3068-MNT. My own authentication for the object is PGP. But how >> the heck do I get a full copy of the object including the other >> people's MD5 hashes if I don't have a password myself? > This is one of the (unwanted) side-effects of removing hashes from the > whois output: the DB object can no longer be used as the primary/authoritative > copy of the object, and retrieved for submitting an update. > It should still work as follows, assuming that "one party" still has a "full" > copy of the object and uses password authentication: Yes, but that's not exactly practical :/ I can see a workaround for this with webupdate. Instead of accecpting only passwords for authentication, the system could create a challenge that somebody who has a X509 or PGP key could encrypt offline and present to the system, which could verify it with the corresponding public key referenced by the mntner object. -- Alex
- Previous message (by thread): [db-wg] Update of mntner object with mixed authentication
- Next message (by thread): [db-wg] Syntax of the "nserver:" Attribute in Domain Objects
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
[ db-wg Archives ]