Authentication Types

RADb supports the following types of authentication:

PGPKEY

• Syntax

  • auth: PGPKEY <HEX id of the PGP KEY>

• Pros:

  • Strongest authentication method available in RPSL.

  • Submissions are hard to forge.

• Cons:

  • Having to PGP sign a message before submitting it to auto-dbm@radb.net.

  • Cannot be used with the RADb Portal.

• Example:

  • auth: PGPKEY-3318564D

BCRYPT-PW

• Syntax:

  • auth: BCRYPT-PW <crypt form of the password>

• Pros:

  • Good fallback if PGP is not an viable alternative.

  • Can be used with the RADb portal forms.

• Cons:

  • Password must be in clear text if using e-mail based submissions

  • Subject to possible dictionary cracking.

• Example:

  • auth: BCRYPT-PW vr78zAVlObYZg

MAIL-FROM

Deprecated as of 5/15/2015

If you notice that your mntner object still has a MAIL-FORM attribute, please contact RADb Support.

• Syntax:

  • auth: MAIL-FROM <Valid RFC822 email address>

• Pros:

  • Requires no additional steps on a submission.

• Cons:

  • Vulnerable to e-mail spoofing.

  • Authorization can fail if your domain is changed by your mailer.

• Example:

  • auth: MAIL-FROM dsmith@.*uoregon.edu