12/12/06: CUWEBAUTH VERSION 1.4 AVAILABLE FOR UNIX APACHE SYSTEMS
(AIX, Linux, Solaris, MacOS X) AND WINDOWS/IIS SYSTEMS.
We are pleased to announce the release of CUWebAuth version 1.4 which includes some new features in addition to the usual enhancements and bug fixes. Most importantly, there is a security patch and Kerberos library upgrades. We're recommending that you upgrade as soon as possible. You can download CUWebAuth at http://identity.cit.cornell.edu/authn/cwa_dl.html.
Enhancements to CUWebAuth include...
- New online documentation (http://identity.cit.cornell.edu/cuwebauth/doc_1.4/)
- Large URL support
- Bug Fixes
- Apache 2.2 support
- New error page support
- Larger cookies supported
- Improved SSL and port detection
- Improved Kerberos cache handling
- Supports multiple Kerberos realms
- IP pooling support (AOL)
- Kerberos upgrade for IIS and Apache versions
- Support for Windows 2003 R2
6/08/05: CUWEBAUTH VERSION 1.3 AVAIlABLE FOR UNIX APACHE SYSTEMS
(AIX, Linux, Solaris, and MacOS X -- FreeBSD coming soon) AND
WINDOWS/IIS SYSTEMS.
This release adds in some more granular controls for session cookies, the ability to separate contexts within a single site using the AuthName directive, and an important safeguard against allowing GuestIDs in via the 'require valid-user' directive. Please upgrade if you are concerned about guest access to your resource AND you are using require valid-user as the only authorization mechanism for any of your restrictions.
3/17/05: New Guest ID System Project Site:
See the latest information on Guest Authentication at Cornell at our new site:
http://identity.cit.cornell.edu/guestIDs/