Path: utzoo!attcan!utgpu!jarvis.csri.toronto.edu!mailrus!uwm.edu!cs.utexas.edu!tut.cis.ohio-state.edu!gem.mps.ohio-state.edu!apple!ginger.acc.com!anise!pst From: pst@anise.acc.com (Paul Traina) Newsgroups: news.software.nntp Subject: NNTP authentication (was .newsrc across the network) Message-ID: <1989Oct27.180413.5174@ginger.acc.com> Date: 27 Oct 89 18:04:13 GMT Sender: news@ginger.acc.com (USENET News System) Organization: Advanced Computer Communications, Santa Barbara, California Lines: 28 nelson@sun.soe.clarkson.edu (Russ Nelson) writes: >Is there anyone out there who's addressing the problem of running a >NNTP client on a machine with no local storage? I have recently completed an authentication scheme for NNTP and have been running it here at ACC for the past month or so. Originally it was designed for reliable statistics gathering, but since it does provide proper authentication across unsecure channels (i.e. ethernet), it gives you the basis of a "login" mechanism. While it is not as foolproof as kerberos, it should pass the current US export restrictions (the DES module is removable) and it is self contained. As soon as I build up a distribution kit and write an easy-to-use authentication client program, I'll be soliciting offers for beta-testers. Once we get all of the quirks out of it (actually it should be quirk free, but I'm a pesimist), I'll pack it off to people I consider "the NNTP gods" for consideration as an official protocol enhancement. I see no need to have a NNRP protocol. All you would need to do is to add a new option to the list command to download your .newsrc file after you have authenticated yourself to the server. You can probably live without the "no local storage" rule -- it is more efficient if you can use the PC's local disks as a "cache" for requesting articles. -- "If Madonna is the material girl, then Kate Bush is the ethereal girl." Disclaimer: The views and opinions expressed in this message do not necessarily represent the views and opinions of IBM or its management.