http://www.advogato.org/person/sxw/ Advogato blog for sxw en-us mod_virgule Fri, 24 May 2013 12:24:02 GMT Thu, 24 May 2001 13:08:00 GMT http://www.advogato.org/person/sxw/diary.html?start=1 http://www.advogato.org/person/sxw/diary.html?start=1 Finally got around to releasing my cpan2rpm utility, which creates RPMs from CPAN packages. We've been using this locally for a while, and I've had occasional requests for a copy, so I finally decided to bundle it up and make it more widely available. Thu, 24 May 2001 00:10:32 GMT http://www.advogato.org/person/sxw/diary.html?start=0 http://www.advogato.org/person/sxw/diary.html?start=0 Given my lack of progress on adding Kerberos support to NSS (and hence to Mozilla's TLS implementation), I've started looking at other solutions to the problem of using Kerberos credentials to authenticate web sessions.<p> <p> The kx509 code from the University of Michigan is looking very promising. It allows users to gain short lived X509 certificates using their Kerberos credentials. These certficates are then transparently used by the browser (via a custom PKCS#11) module to authenticate to the server. <p> <p> So far, I've hacked all of the umich specific stuff out of the code, and rejigged the build system so its better at dealing with different environments. Its looking very promising though - next step is to try to get some web applications to operate with client certificates.