>My gut sense is that without an authentication layer this can't work ...
>but then we have authentication layers built into the ILS that *might*
>be leveraged. Does anyone have any experience with this?
I think most RSS readers can support HTTP authentication. You usually need
to write an extension module for custom authentication on the server side.
Mod_perl and apache is probably the most popular combination for adding
custom hooks but there are others as well.