Authenticating clients and servers
Chaz Ginger
cginboston at hotmail.com
Sun Apr 15 14:40:57 EDT 2007
Thomas Krüger wrote:
> Chaz Ginger schrieb:
>> I am writing a distributed server system using Python. I need to support
>> authentication and was wondering what approaches are available under
>> Python and what are the best practices.
>
> Well, there are many ways of client authentication. To narrow it down it
> would be nice if your tell us something about the protocol you are
> planning to use.
>
> Many protocols support an additional SSL/TLS-Layers (e.g. HTTP ->
> HTTPS). There you can use SSL certificate authentication. It may
> berequired to set up a small CA, but done right it is pretty secure.
>
> Thomas
>
I am leaning toward using Kerberos via GSS, but I am willing to listen
to other ideas. I've played around with TLS but the problem is that
updating the .PEM files can be a pain. I was also thinking about X509,
and was wondering if anyone has experience with it.
Chaz
More information about the Python-list
mailing list