Re: [Nbd] nbd-server working easily in cygwin in XP
- To: Wouter Verhelst <w@...112...>
- Cc: email@example.com
- Subject: Re: [Nbd] nbd-server working easily in cygwin in XP
- From: Paul Clements <paul.clements@...124...>
- Date: Wed, 13 Aug 2008 09:58:50 -0400
- Message-id: <48A2E89A.7090702@...124...>
- In-reply-to: <20080812215358.GC10784@...172...>
- References: <6856.1216580206@...205...> <20080724115001.GA17707@...172...> <200808121810.m7CIAEUq024864@...219...> <20080812202951.GB10784@...172...> <20080812215358.GC10784@...172...>
Wouter Verhelst wrote:
What we came up with is this:
- Server sends a random number as a way to challenge the client for a
- Client constructs something based on the IP address, password, and the
random number the server sent, pumps it through a secure hash
algorithm, and sends that back.
- Server constructs the same thing and pumps it through the same
algorithm. If the output matches, we're authenticated; if it doesn't
match, we're not.
But why build that into nbd? You can stunnel the nbd connection, and it
takes care of authentication and encryption. And no messy code added to nbd.