Access Control

Anetd, starting from version 1.0, employs 512-bit public key cryptography to authenticate control commands. Each control command sent to an Anetd daemon is digitally signed, thus ensuring that Anetd access control policies are soundly enforced.

Anetd enforces access control in two ways:

1. It executes deployment and control commands only originating from a set of known (client id, public key) pairs, specified in one or more master ACL (Access Control List) file(s) and/or one or more local ACL file(s)
2. It downloads and executes code only from a set of HTTP servers or local files/directories specified in one or more master TCL (Trusted Codeserver List) file(s) and/or one or more local TCL file(s)

• ACL Format
• TCL Format
• ACL/TCL File Handling