Complete.Org: Mailing Lists: Archives: freeciv-dev: August 2001:
[Freeciv-Dev] Re: MD5 password authentication and so on.

[Freeciv-Dev] Re: MD5 password authentication and so on.

[Top] [All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index] [Thread Index]

To:	"Zverina, David" <David.Zverina@xxxxxxxxxxxxxxx>
Cc:	freeciv-dev@xxxxxxxxxxx
Subject:	[Freeciv-Dev] Re: MD5 password authentication and so on.
From:	Vasco Alexandre Da Silva Costa <vasc@xxxxxxxxxxxxxx>
Date:	Wed, 22 Aug 2001 21:54:59 +0100 (WET DST)

On Wed, 22 Aug 2001, Zverina, David wrote:

> You are missing challenge-response mechanism.
> Works something like this.
> 1. Client sends a login request with user id
> 2. Server sends a challenge string which changes every time it's used (eg. a
> timestamp)
> 3. Client encrypts the challenge string using his password as the key. It
> sends the resultant string to the server.
> 4. Server does the same calculation as the client using it's copy of the
> password and compares it to the password received. If they match the client
> is authenticated.

Yes. I like this solution better.

---
Vasco Alexandre da Silva Costa @ Instituto Superior Tecnico, Lisboa

[Prev in Thread]

Current Thread

[Next in Thread]

[Freeciv-Dev] Re: MD5 password authentication and so on., Zverina, David, 2001/08/22
- [Freeciv-Dev] Re: MD5 password authentication and so on., Vasco Alexandre Da Silva Costa <=
  - [Freeciv-Dev] Re: MD5 password authentication and so on., Sebastian Bauer, 2001/08/22
- [Freeciv-Dev] Re: MD5 password authentication and so on., Reinier Post, 2001/08/23

Prev by Date: [Freeciv-Dev] [Fwd: Re: New city dialog - stage 12]
Next by Date: [Freeciv-Dev] [gtk] message window remains hidden when in background (+ minimal patch) (PR#902)
Previous by thread: [Freeciv-Dev] Re: MD5 password authentication and so on.
Next by thread: [Freeciv-Dev] Re: MD5 password authentication and so on.
Index(es):
- Date
- Thread