Re: Authenticate by key only?

help-cfengine

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Authenticate by key only?

From:	Mark . Burgess
Subject:	Re: Authenticate by key only?
Date:	Sun, 16 Jun 2002 18:22:15 +0200 (MET DST)

I think skipverify is what you want. Where do the docs imply the reverse?

M

On 14 Jun, Frank Smith wrote:
> Normally cfservd does double-reverse lookups to verify hostnames, but I
> have a few hosts where this won't work due to NAT and other reasons.  They
> do all have unique IPs, so I want to be able to skip the DNS lookups for
> those hosts only and just use the public keys for authentication (those
> were already exchanged after cfengine was installed on the clients).
>    SkipVerify= does part of what I want, but the documentation implies it
> just relies on IP and not the keys.  Is there some other option I've missed
> or some other way around it, or is the only option to hack the source?
> 
> Thanks,
> Frank
> 
> --
> Frank Smith                                                fsmith@hoovers.com
> Systems Administrator                                     Voice: 512-374-4673
> Hoover's Online                                             Fax: 512-374-4501



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Work: +47 22453272            Email:  Mark.Burgess@iu.hio.no
Fax : +47 22453205            WWW  :  http://www.iu.hio.no/~mark
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Prev in Thread]

Current Thread

[Next in Thread]

Authenticate by key only?, Frank Smith, 2002/06/14
- Re: Authenticate by key only?, Mark . Burgess <=
  - Re: Authenticate by key only?, Frank Smith, 2002/06/17

Prev by Date: Authenticate by key only?
Next by Date: cfengine in test lab....
Previous by thread: Authenticate by key only?
Next by thread: Re: Authenticate by key only?
Index(es):
- Date
- Thread