within reviews and downloads
Search results for «within»:
Showing 1 to 10 from 10 matches
|
MUNGE Uid 'N' Gid Emporium 0.5.6 MUNGE Uid 'N' Gid Emporium is an authentication service for creating and validating credentials. It is designed to be highly scalable for use in an HPC cluster environment. It allows a process to authenticate the UID and GID of another local or remote process within a group of hosts having common users and groups. These hosts form a security realm that is defined by a shared cryptographic key. Clients within this security realm can create and validate credentials without the use of root privileges, reserved ports, or platform-specific methods. Rationale The need for MUNGE arose out of the HPC cluster environment. Consider the scenario in which a local daemon running on a login node receives a client request and forwards it on to remote daemons running on compute nodes within the cluster. Since the user has already logged on to the login node, the local daemon just needs a reliable means of ascertaining the UID and GID of the client process. Furthermore, the remote daemons need a mechanism to ensure the forwarded authentication data has not been subsequently altered. A common solution to this problem is to use Unix domain sockets to determine the identity of the local client, and then forward this information on to remote hosts via trusted rsh connections. But this presents several new problems. First, there is no portable API for determining the identity of a client over a Unix domain socket. Second, rsh connections must originate from a reserved port; the limited number of reserved ports available on a given host directly limits scalability. Third, root privileges are required in order to bind to a reserved port. Finally, the remote daemons have no means of determining whether the client identity is authentic. Overview A process creates a credential by requesting one from the local MUNGE service. The encoded credential contains the UID and GID of the originating process. This process sends the credential to another process within the security realm as a means of proving its identity. The receiving process validates the credential with the use of its local MUNGE service. The decoded credential provides the receiving process with a reliable means of ascertaining the UID and GID of the originating process. This information can be used for accounting or access control decisions. The contents of the credential (including any optional payload data) are encrypted with a key shared by all munged daemons within the security realm. The integrity of the credential is ensured by a message authentication code (MAC). The credential is valid for a limited time defined by its time-to-live (TTL). The daemon ensures unexpired credentials are not replayed on a particular host. Decoding of a credential can be restricted to a particular user and/or group ID. The payload data can be used for purposes such as embedding the destination's address to ensure the credential is only valid on a specific host. The internal format of the credential is encoded in a platform-independent manner. And the credential itself is base64 encoded to allow it to be transmitted over virtually any transport. What's New in This Release: ยท A bug was fixed that caused builds using Libgcrypt to fail without the OpenSSL development header files. GPL (GNU General Public License) |
|
ExtUtils::ModuleMaker::StandardText 0.47 ExtUtils::ModuleMaker::StandardText are methods used within ExtUtils::ModuleMaker. The methods described below are 'quasi-private' Perl Artistic License |
|
cpphs 1.0 cpphs is a liberalised re-implementation of cpp, the C pre-processor, in Haskell. Why re-implement cpp? Rightly or wrongly, the C LGPL (GNU Lesser General Public License) |
|
Taverna 1.4 Taverna is a collection of workflow enactment and description components, including a high level language for workflows called Scufl LGPL (GNU Lesser General Public License) |
|
Ikaros Simulation Framework 0.8.1 Ikaros is a framework for writing and running component-based simulators GPL (GNU General Public License) |
|
RearSite 0.1 RearSite is a simple collaborative Web site manager GPL (GNU General Public License) |
|
Simkin for C++ 2.23 Simkin is a simple interpreted language that can be placed within data files, including XML or within databases. It can used to en LGPL (GNU Lesser General Public License) |
|
Tweakers' HOWTOs Tamer 1.8 Tweakers' HOWTOs Tamer is designed to be useful for people new to GNU/Linux by providing quick, easy access to the HOWTO documents via menus. Access to specific points within documents is provided via filemarks. Tamer is built as a general purpose tool and can be modified to fit other plain-text tasks. Search facilities include a powerful graphics-based extension for grep searches on files and directories as well as an internal search tool for searching files when loaded into a Tamer. Internet search access is provided via highlight-and-click access to web site searches via the user's browser directly from within a document. Additional features include a built-in editor with Line Loops editing and an interface to the GNU Project's Aspell spell check program. Complete help information and program feedback tools are provided within the Tamer and Tamer Tutor. Daftnee Reader is a visual mode of the HOWTOs Tamer made for easy, comfortable reading on a computer screen. It has been designed with the Project Gutenberg files in mind but works well with other plain text files. Additional Daftnee Reader features include comprehensive sessions facilities, index listing of files by title in addition to file name, and Quick Directory lists and functions. All Tamer tools are readily available when in Daftnee Reader mode. Qonqitzewautl is a built-in tool kit providing added functionality to plain text files without modifying the files. Small buttons called zewautl are overlaid on the files in the display window and provide access to other files, images and Internet URLs. When combined with grep search, goto zewautl provide an especially powerful tool for all GNU/Linux/Unix users, newbie to guru. Full Qonqitzewautl functionality is available in both Tamer and Daftnee Reader modes. Tamer Tutor is a small, self-contained program external to the Tamer. It is designed to be a beginners' guide to working with the Tamer and as an additional quick reference. It includes subjects for the primary features of the Tamer with multiple topics under each subject addressing configuration and use of the Tamer and tools. An install-sh graphics-based installer is included with this version of the Tamer. It is a small program which guides the user through the simple install process. The installer is made with new users in mind and has step-by-step instructions with explanations throughout the installation process. The installer has an add user feature which makes it simple to install a Tamer for additional users. GPL (GNU General Public License) |
|
Channelflow 1.0.0 Channelflow is a direct numerical simulator for incompressible Navier-Stokes channel flow, written in C++. Channelflow application GPL (GNU General Public License) |
|
ferite 1.0.2 ferite is a lighweight, portable, threadsafe scripting engine with a language that is very easy to pick up and use. ferite is a sc BSD License |
Related: