Great Circle Associates Majordomo-Workers
(May 1998) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Fake-ID
From: Wes Brown <wes @ prozac . eeap . cwru . edu>
Date: Wed, 6 May 1998 07:47:01 -0400 (EDT)
To: tibbs @ hpc . uh . edu (Jason L Tibbitts III)
Cc: majordomo-workers @ greatcircle . com
In-reply-to: <ufapvkbwlbj.fsf@sina.hpc.uh.edu> from "Jason L Tibbitts III" at Feb 25, 98 01:12:16 pm 
>From the majordomo-workers archive I ran across this message (and three
others on this thread).  I am looking to add some functionality to the
authentication such that the moderation and administration of a majordomo
list can be accomplished by digitally signing the command message.

The majordomo host would only check the adminitration control messages to
make sure they are coming from registered maintainers of a list thus
eliminating the need to send text passwords in the clear.

I am currently rewriting my mail handling script for the addition to the
majordomo-workers list.

Thanks in advance for any feedback that is offered.

> To: majordomo-workers@greatcircle.com
> Subject: Re: Fake-ID
> References: <199802251622.RAA03855@leibniz.math.ethz.ch>
> From: Jason L Tibbitts III <tibbs@hpc.uh.edu>
> Date: 25 Feb 1998 13:12:16 -0600
> In-Reply-To: Norbert Bollow's message of Wed, 25 Feb 1998 17:22:29 +0100
> Message-ID: <ufapvkbwlbj.fsf@sina.hpc.uh.edu>
> 
> >>>>> "NB" == Norbert Bollow <nb@thinkcoach.com> writes:
> 
> NB> Is there a decent PGP module yet?
> 
> No.  If there was one, support for it would already be in.  I experimented
> with the one that exists but it's really (really, really) lousy.
> 
> Key management is a big problem; until we have a good shared library
> instead of calls to an executable, we have no means to be secure.
> 
> These days I'm thinking that PGP has changed direction and is no longer
> going where we need to go.  Eryq is considering support for S/MIME in
> MINE-tools but there are plenty of issues there too.  And unfortunately,
> rolling our own isn't an option.
> 
> NB> I'm interested in integrating PGP support into Majordomo for a
> NB> different reason, namely to allow PGP-encrypted mailing lists...
> 
> I assume you either have small lists or an enormous amount of CPU.  Then
> again, when you actually _need_ to do this, buying the hardware isn't a big
> deal.
> 
>  - J<

Wes
--- 
Wes Brown
ewb4@po.cwru.edu		wes@prozac.cwru.edu
http://prozac.cwru.edu/wes/About.me.html
KB8TGR
Follow-Ups:
  • Re: Fake-ID
    From: Jason L Tibbitts III <tibbs@hpc.uh.edu>
Indexed By Date Previous: Re: Single-command addresses
From: Brock Rozen <brozen@torah.org>
Next: Question about upgrading mj2
From: Bryan Fullerton <bryanf@samurai.com>
Indexed By Thread Previous: Request for 'commands' in the aliases/addresses
From: Brock Rozen <brozen@torah.org>
Next: Re: Fake-ID
From: Jason L Tibbitts III <tibbs@hpc.uh.edu>
Google
 
Search Internet Search www.greatcircle.com