BSD Authentication, otherwise known as BSD Auth, is an authentication framework and software API employed by OpenBSD and accompanying software such as OpenSSH. It originated with BSD/OS, and although the specification and implementation were donated to the FreeBSD project by BSDi, OpenBSD chose to adopt the framework in release 2.9. Pluggable Authentication Modules (PAM) serves a similar purpose on other operating systems such as Linux, FreeBSD and NetBSD.
BSD Auth performs authentication by executing scripts or programs as separate processes from the one requiring the authentication. This prevents the child authentication process from interfering with the parent except through a narrowly defined inter-process communication API, a technique inspired by the principle of least privilege and known as privilege separation. This behaviour has significant security benefits, notably improved fail-safeness of software, and robustness against malicious and accidental software bugs.[1]
^Niels Provos; Markus Friedl; Peter Honeyman (2003). "Preventing Privilege Escalation". Proceedings of the 12th USENIX Security Symposium. pp. 231–242.
and 25 Related for: BSD Authentication information
Authentication Modules (PAM) serves a similar purpose on other operating systems such as Linux, FreeBSD and NetBSD. BSD Auth performs authentication by...
A pluggable authentication module (PAM) is a mechanism to integrate multiple low-level authentication schemes into a high-level application programming...
can include using the BSDAuthentication system or pluggable authentication modules (PAM) to enable additional authentication through methods such as...
Protocol (IP) networks. It supports network-level peer authentication, data origin authentication, data integrity, data confidentiality (encryption), and...
FreeBSD is a free and open-source Unix-like operating system descended from the Berkeley Software Distribution (BSD). The first version of FreeBSD was...
OpenBSD is a security-focused, free and open-source, Unix-like operating system based on the Berkeley Software Distribution (BSD). Theo de Raadt created...
components: the transport layer provides server authentication, confidentiality, and integrity; the user authentication protocol validates the user to the server;...
for the no longer maintained ConsoleKit. BSDAuthentication Name Service Switch passwd Pluggable authentication module "Configuring Login Manager". Solaris...
libc implements it almost identically. BSDAuthentication Group (database) Name server Pluggable Authentication Modules "Name Service Switch (The GNU C...
NAUTH Number of authentication methods supported, uint8 AUTH Authentication methods, 1 byte per method supported The authentication methods supported...
The final release of FreeBSD 2, 2.2.8-RELEASE, was announced on 29 November 1998. FreeBSD 2.0 was the first version of FreeBSD to be claimed legally free...
supports RIPv1 updates authentication, RIPng does not. IPv6 routers were, at the time, supposed to use IPsec for authentication.[citation needed] RIPv2...
been applied to the OpenBSD versions of common programs such as tcpdump and Apache, and to the BSDAuthentication system. OpenBSD has a history of providing...
and authentication work, allowing OpenVPN to use all the ciphers available in the OpenSSL package. It can also use the HMAC packet authentication feature...
an attacker would see only encrypted data, not the raw data sender authentication to prevent unauthorized users from accessing the VPN message integrity...
problem". SSTP supports user authentication only; it does not support device authentication or computer authentication. The following header structure...
to act as an access point and authentication server. There are three implementations: Jouni Malinen's hostapd, OpenBSD's hostapd and Devicescape's hostapd...
NetBSD is a free and open-source Unix-like operating system based on the Berkeley Software Distribution (BSD). It was the first open-source BSD descendant...
support SMTP, POP3, and IMAP proxy Requires authentication using an external HTTP server or by an authentication script Other features include upgrading executable...
SMTP server. SMTP Authentication, often abbreviated SMTP AUTH, is an extension of the SMTP in order to log in using an authentication mechanism. Communication...
for jailbroken devices. lsh supports only one BSD platform officially, FreeBSD. Also known as OpenBSD Secure Shell. Included and enabled by default since...
more prone to watermarking attacks than others. Pre-boot authentication: Whether authentication can be required before booting the computer, thus allowing...
Bluetooth stack was ported to OpenBSD as well, however OpenBSD later removed it as unmaintained. DragonFly BSD has had NetBSD's Bluetooth implementation since...
range from authentication schemes to supporting server-side programming languages such as Perl, Python, Tcl and PHP. Popular authentication modules include...