What is "digest"?
The Internet Engineering Task Force defines in RFC 2617 two authentication methods for HTTP: "basic" and "digest". The main advantage of digest over basic is the password is never transmitted in clear over the wire
Although originally intended for HTTP, thanks to Pluggable Authentication Modules it is possible to use any type of authentication in any application.
The Digest Software Project develops three libraries:
- libdigest: C library for computing the RFC2617-compliant digest from a username, realm and password triplet and return it as a string
- libcppdigest: C++ library for managing htdigest-like file
- libpam-digestfile: PAM module which authenticates users against a /etc/passwd-like file containing RFC2617-digested passwords
What are the latest versions?
Although developed by the same author, each library has its own lifecycle:
- libdigest: 0.2
- libcppdigest: 0.2
- libpam-digestfile: 0.1.1
Is this actually useful? What for?Yes, this is actually useful. For instance, you could have your webserver and your FTP server use the same digest-passwords file. Please note if you want to use basic authentication, you need libpam-pwdfile.
If you find this project useful, please consider making a donation