Working with Kerberos (Trying some new stuff)

Kerberos is a network authentication protocol designed at MIT to provide a strong authentication for client/server applications by using cryptographic techniques. Till today, the implemented MIT Kerberos protocol authenticates the client to the dedicated Kerberos server before the client can access any available service with no further need to prove its identity. This achieves the goal of Single-Sign-On (SSO) for most of the services requiring authentication on the network.

we have enhanced the existing Kerberos protocol by providing a strong second factor of authentication along with the existing authentication factor. A strong pre-auth mechanism is developed which will be using one-time-passwords (OTP) for authentication. This will increase the security mechanism and has removed the deficiency of password compromise. A new tracking mechanism is incorporated in the Kerberos server. This helps Kerberos server to track which user is actually using the service. OTP mechanism also helps to log undesired number of unsuccessful attempts from the user side and lock the user. Once the user has been locked, only user can unlock himself by providing the proper credentials.

>> I understand that setting up the whole kerberos system can be scary at first glance and u need to follow all the steps very carefully. Feel free to ask me/write me if u r planning any future kerberos development or want to know more about the above described work.

>> MIT kerberos site is having excellent info about the kerberos-setup and can be used as a reference for all the dev work.

Compiling a 2.6.XX.XX kernel

Today I was determined to compile my own kernel as I wanted to try out some stuf related to the kernel hacking.
Here I will be mentioning some of the steps which are essential for compiling a kernel.

1) first of all be sure that you have the latest kernel source code on your linux machine. You may want chack that out on www.kernel .org . It maintains all the list of kernels. Download the latest 2.6.XXXX kernel source from there and untar in on ur system.
2) once you have the kernel source on your system, move to the /usr/src dir. Create a softlink here to the dir where your kernel source is kept.
for eg: if u saved your kernel source code at target = /home/mykernel_source/linux2.6.22.5/ , then create ln -s linux.
this will allow you to access the dir from the /usr/src/linux. :)

3) Once the above procedure is complete, you are ready to start compiling your own kernel.

follow the link : http://www.digitalhermit.com/linux/Kernel-Build-HOWTO.html#CONFIGURATION to actually start compile-work.

see that you need to do few extra steps like copying your .config file to the current /usr/src/linux dir. DOing this you dont need to worry about configuration section mentioned in the link. You simply need to run ---> make menuconfig and without doing any changes there, simply do save & exit from the display window. THis is because you have already copied .config file to your linux which is already configured according to your system configuration by the already installed distribution linux. THis saves your work !!! :)

4) After configuration move on to the build section of the link mentioned above (in 2.6 section).
run a) make bzImage b) make modules c) make modules_install (As root).
For related explaination see the link.
(it takes approx 1:15- 1:30mins for the above steps, so be patient. :) )

5) Once, u are upto here u are left with configuring RAMDisk. DO it as per mentioned in the link.
6) copy the bzImage & System.map to /boot as mentioned in the link...

7) Now goto /usr/grub/grub.conf and edit this file as per the link. It will allow grub to load your newly created linux image.

8) reboot the system,select your linux there & you are done with the work :)
njoy!!!!

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Let me know, if you are faced problems while following the above steps.

-gopal

First words

WIll be updating this one shortly with lots and lots of technical stuff.
wait......
:)

-gopal