Authentication Types Available for use with the RADB
RPSL supports the following types of authentication:
auth: PGPKEY <HEX id of the PGP KEY>
Pros: Strongest authentication method available in RPSL. Submissions are hard to forge.
Cons: Having to PGP sign a message before submitting it to email@example.com. Cannot be used with Web updates.
auth: CRYPT-PW <crypt form of the password>
Pros: Good fallback if PGP is not an viable alternative. Can be used with the Web updates forms.
Cons: Password must be in clear text if using e-mail based submissions (Web updates, however, will encrypt the password). Subject to possible dictionary cracking.
auth: CRYPT-PW vr78zAVlObYZg
MAIL-FROM - Deprecated as of 5/15/2015
auth: MAIL-FROM <Valid RFC822 email address>
Pros: Requires no additional steps on a submission.
Cons: Vulnerable to e-mail spoofing. Authorization can fail if your domain is changed by your mailer.
auth: MAIL-FROM dsmith@.*uoregon.edu