Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections:  Developer -  High Performance -  Infrastructure -  IT Management -  Security -  Storage -
Linux Today Navigation
LT Home
Contribute
Contribute
Link to Us
Linux Jobs


More on LinuxToday


Release Digest: GNU, January 29, 2003

Jan 30, 2003, 05:00 (0 Talkback[s])

GNU SASL 0.0.5

GNU SASL is an implementation of the Simple Authentication and
Security Layer framework and a few common SASL mechanisms.  SASL is
used by network servers (e.g., IMAP, SMTP) to request authentication
from clients, and in clients to authenticate against servers.

GNU SASL contains a library (`libgsasl'), a command line utility
(`gsasl') to access the library from the shell, and a manual.  The
library includes support for the SASL framework (with authentication
functions and application data privacy and integrity functions) and at
least partial support for the CRAM-MD5, EXTERNAL, GSSAPI, ANONYMOUS,
PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM mechanisms.

The library is portable because it does not do network communication
by itself, but rather leaves it up to the calling application.  The
library is flexible with regards to the authorization infrastructure
used, as it utilizes callbacks into the application to decide whether
an user is authorized or not.

GNU SASL is developed for the GNU/Linux system, but runs on over 20
platforms including most major Unix platforms and Windows.

GNU SASL is licensed under the GNU Public License.

The project web page:
http://www.gnu.org/software/gsasl/

For more information see:
http://www.ietf.org/rfc/rfc2222.txt

GNU SASL can be downloaded from:

TAR.GZ source code:
http://josefsson.org/libgsasl/releases/libgsasl-0.0.5.tar.gz

OpenPGP signature of TAR.GZ source code:
http://josefsson.org/libgsasl/releases/libgsasl-0.0.5.tar.gz.asc

The fingerprint of the key used to sign releases is 0xB565716F and
should be available from OpenPGP key servers.

Noteworthy changes in 0.0.5:

** Command line application "gsasl" now supports --imap and --connect.
The --imap parameter makes it use a IMAP-like negotiation on
stdin/stdout.  The --connect parameter makes it connect to a host over
TCP, and talk to it instead of stdin/stdout.  This allows it to be
used as a simple test tool to connect to IMAP servers.  Currently
integrity and confidentiality is not working properly, so if you use
DIGEST-MD5 you currently have to specify --quality-of-protection=auth.

** Texinfo documentation added for command line tool.

** Libgcrypt initialization no longer causes a warning to be printed.

** Added API reference manual in HTML format, generated using GTK-DOC.
See doc/reference/, in particular doc/reference/html/index.html.

** GNU Libidn replaces Libstringprep.
Although it is still stored in the libstringprep/ directory for CVS
reasons.

** Bug fixes for DIGEST-MD5 and GSSAPI.



_____________________________________________

GNU Libidn 0.1.5

GNU Libidn is an implementation of the Stringprep (with the Nameprep
and Kerberos 5 profiles), Punycode and IDNA specifications defined by
the IETF Internationalized Domain Names (IDN) working group, used for
internationalized domain names.  It is licensed under the GNU Lesser
General Public License.

The library contains a generic Stringprep implementation (including
Unicode 3.2 NFKC normalization, table mapping of characters, and
Bidirectional Character handling), two Stringprep profiles; Nameprep
(for IDN) and Kerberos5, as well as a Punycode and IDNA.

The Stringprep API consists of two main functions, one for converting
data from the system's native representation into UTF-8, and one
function to perform the Stringprep processing.  Each stringprep
profile has a corresponding CPP macro.  Adding a new Stringprep
profile for your application within the API is straightforward.  The
Punycode API consists of one encoding function and one decoding
function.  The IDNA API consists of the ToASCII and ToUnicode
functions.

The library is currently used by forthcoming SASL and Kerberos
libraries to process user names and passwords before they are input to
cryptographic operations.  Libidn can be built into GNU Libc so it
enables a new flag to getaddrinfo() that performs IDN processing for
all normal application.

GNU Libidn is developed for the GNU/Linux system, but runs on over 20
Unix platforms (including Solaris, IRIX, AIX, and Tru64) and Windows.

The project page of the library is available at:
http://www.gnu.org/software/libidn/

For more information see:
http://www.ietf.org/html.charters/idn-charter.html
http://www.ietf.org/rfc/rfc3454.txt (stringprep specification)
http://www.ietf.org/internet-drafts/draft-ietf-idn-punycode-03.txt
http://www.ietf.org/internet-drafts/draft-ietf-idn-nameprep-11.txt
http://www.ietf.org/internet-drafts/draft-ietf-idn-idna-14.txt
http://www.i-d-n.net/

GNU Libidn can be downloaded from:

TAR.GZ source code:
http://josefsson.org/libstringprep/releases/libidn-0.1.5.tar.gz

OpenPGP signature of TAR.GZ source code:
http://josefsson.org/libstringprep/releases/libidn-0.1.5.tar.gz.asc

The fingerprint of the key used to sign releases is 0xB565716F and
should be available from OpenPGP key servers.

Noteworthy changes since 0.1.0 (the last version that was announced on
info-gnu):

* Version 0.1.5 (released 2003-01-28)

** The library can now be built as part of GNU Libc.
This is experimental and only tested against GNU Libc version 2.3.1.
See the libc/ directory, and libc/README in particular.

** Bug fixes.

* Version 0.1.4 (released 2003-01-15)

** Documentation fixes.

** Portability fixes.

** Bug fixes.

* Version 0.1.3 (released 2003-01-15)

** Added texinfo manual.

* Version 0.1.2 (released 2003-01-08)

** Added high-level IDNA API.

** Added example3.c and example4.c demonstrating the high-level IDNA API.

* Version 0.1.1 (released 2003-01-08)

** Added documentation using GTK-DOC.

** The obsolete stringprep_utf8toucs4_fast API entry point was removed.
By accident it was never removed in 0.1.0.