From mboxrd@z Thu Jan  1 00:00:00 1970
To: 9fans@cse.psu.edu
From: "Brian L. Stuart" <blstuart@bellsouth.net>
Subject: Re: [9fans] Drawterm and security
In-reply-to: Your message of Sat, 19 Feb 2005 11:00:57 -1000 (HST) .
	<Pine.BSI.4.61.0502191055110.3971@malasada.lava.net>
Date: Sat, 19 Feb 2005 15:09:02 -0600
Message-Id: <20050219210924.DUJY730.imf22aec.mail.bellsouth.net@p1.stuart.org>
Topicbox-Message-UUID: 107538aa-ead0-11e9-9d60-3106f5b1d025

In message <Pine.BSI.4.61.0502191055110.3971@malasada.lava.net>, Tim Newsham wr
ites:
>When you try to connect to sources (for example, you
>do a replica/pull, or 9fs sources) it connects to the
>machine and the machine asks you to authenticate to
>the outside.plan9.bell-labs.com authdom.

I almost literally heard the bell ring this time.  So
when I try to initiate an authentication, it's up to the
server to tell me what authentication domain he wants to
use.  Then I look up to find a auth= autodom= entry so
that I know who to talk to in order to do authenticate
in that domain.  So if I have an authdom=home entry in my
local network section, then anyone who wants to connect
to my server will be told to authenticate using the
home domain.  It's then up to the client to know what
auth server to use.

Somehow I never caught that part of it.  I think I can
now classify it as grey magic instead of black magic.
I'm still fuzzy on some bits, but it's getting a little
clearer.

Thanks,
Brian L. Stuart