diff options
author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2002-08-28 14:10:45 +0000 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2002-08-28 14:10:45 +0000 |
commit | 5d6634457b2661837886b77037dc9cd51cb15e54 (patch) | |
tree | d0e6d7cd294fb675c17ad7f6fdff9f161a605a7c | |
parent | 7d5104e60f8b854577b81bb392b037f65e58b9b1 (diff) | |
download | gnutls-5d6634457b2661837886b77037dc9cd51cb15e54.tar.gz |
*** empty log message ***
-rw-r--r-- | doc/tex/auth.tex | 9 |
1 files changed, 2 insertions, 7 deletions
diff --git a/doc/tex/auth.tex b/doc/tex/auth.tex index 5e18dc388e..bf890142ff 100644 --- a/doc/tex/auth.tex +++ b/doc/tex/auth.tex @@ -78,11 +78,7 @@ This is achieved since SRP does not use the plain password to perform authentica verifier. The verifier is $g^{x}mod(n)$ and $x$ is a value calculated from the username and the password. \par SRP is normaly used with a SHA based hash function, to calculate -the value of $x$. In \gnutls{} in addition to original SHA hash function, -a hash function based on blowfish crypt is also supported. The blowfish -crypt function has the property of variable complexity, thus the -verifier may resist future attacks based on computational power, by just increasing -the complexity of the function ---also called ``the cost''. +the value of $x$. \par The advantage of SRP authentication, over other proposed secure password authentication schemas, is that SRP does not require the server to hold the user's password. This kind of protection is similar to the one used traditionaly @@ -128,8 +124,7 @@ $ gnutls-srpcrypt --create-conf /etc/tpasswd.conf \item This command will create /etc/tpasswd and will add user 'test' (you will also be prompted for a password). Verifiers are stored by default in the -way libsrp expects (using a modified SHA()). However using this tool you -may also specify blowfish crypt instead of SHA (see --crypt parameter). +way libsrp expects (using a modified SHA()). \begin{verbatim} $ gnutls-srpcrypt --passwd /etc/tpasswd \ --passwd-conf /etc/tpasswd.conf -u test |