bwctld.keys
Section: File Formats (5)
Updated: $Date: 2009-01-20 09:36:51 -0500 (Tue, 20 Jan 2009) $
Index
Return to Main Contents
NAME
bwctld.keys - Bandwidth Control
Daemon AES keyfile database
DESCRIPTION
The bwctld.keys file is used to hold the identity/AES keys pairs
needed for bwctld to authenticate users. The format of this file
is described in the aespasswd(1) manual page. The location of this
file is controlled by the -c option to bwctld but it
must be named bwctld.keys.
bwctld uses symmetric AES keys for authentication. Therefore, the
bwctl client will have to have access to the exact same AES key
for authentication by AES to work. Most likely, the user will simply
know the passphrase that generated the AES key in the first place.
Additionally, it is important that the system administrator and end user
ensure the key is not compromised.
If the bwctl client is able to authenticate using the identity and AES
key presented, bwctld will use the directives found in the
bwctld.limits file to map policy restrictions to this connection.
SECURITY CONSIDERATIONS
The keys in the bwctld.keys file are not encrypted in any way. The
security of these keys is completely dependent upon the security of the
system and the discretion of the system administrator.
RESTRICTIONS
Identity names are restricted to 16 characters.
SEE ALSO
aespasswd(1), bwctl(1), bwctld(8), bwctld.limits(5),
and the http://e2epi.internet2.edu/bwctl/ web site.
ACKNOWLEDGMENTS
This material is based in part on work supported by the National Science
Foundation (NSF) under Grant No. ANI-0314723. Any opinions, findings, and
conclusions or recommendations expressed in this material are those of
the author(s) and do not necessarily reflect the views of the NSF.
Index
- NAME
-
- DESCRIPTION
-
- SECURITY CONSIDERATIONS
-
- RESTRICTIONS
-
- SEE ALSO
-
- ACKNOWLEDGMENTS
-
This document was created by
man2html,
using the manual pages.
Time: 22:37:06 GMT, May 19, 2010