blob: 8f171ffe95e1e17ea2b4e83b64b7e8c626a6e425 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
secauth is a protocol for authentication.
It is not a secure alternative to encrypted
communcation, nor is it a password hashing algorithm,
but is used between the two.
If used correctly, secauth ensures the server owner,
or someone with access to the server, does not get
access to the user's plain-text password. It also
gives the user a lower bound for the security with
which the server is treating the password.
Additionally, if an attacker breaks the communication
encryption, he will not access to the user's plain-text
password and the information he gets access to is not
reusable.
(The configurations in the demos are in no way
recommended, they are just portable and weak (fast)
enough to run in valgrind(1).)
|