Authenticate by key only?

help-cfengine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Authenticate by key only?

From:	Frank Smith
Subject:	Authenticate by key only?
Date:	Fri, 14 Jun 2002 14:08:00 -0500

Normally cfservd does double-reverse lookups to verify hostnames, but I
have a few hosts where this won't work due to NAT and other reasons.  They
do all have unique IPs, so I want to be able to skip the DNS lookups for
those hosts only and just use the public keys for authentication (those
were already exchanged after cfengine was installed on the clients).
  SkipVerify= does part of what I want, but the documentation implies it
just relies on IP and not the keys.  Is there some other option I've missed
or some other way around it, or is the only option to hack the source?

Thanks,
Frank

--
Frank Smith                                                fsmith@hoovers.com
Systems Administrator                                     Voice: 512-374-4673
Hoover's Online                                             Fax: 512-374-4501

[Prev in Thread]

Current Thread

[Next in Thread]

Authenticate by key only?, Frank Smith <=
- Re: Authenticate by key only?, Mark . Burgess, 2002/06/16
  - Re: Authenticate by key only?, Frank Smith, 2002/06/17

Prev by Date: Solaris 9
Next by Date: Re: Authenticate by key only?
Previous by thread: Solaris 9
Next by thread: Re: Authenticate by key only?
Index(es):
- Date
- Thread