Kerberos vs. LDAP for authentication -- any opinions?
David Magda
dmagda+trace040127 at ee.ryerson.ca
Thu Jan 29 18:58:08 EST 2004
Jeffrey Altman <jaltman2 at nyc.rr.com> writes:
[...]
> usernames and passwords across the network to a potentially
> compromised machine in order for them to be validated against the
> copies stored in LDAP.
[...]
And what prevents a Kerberos server from being compromised? Any
system can have a root-kit installed on it.
--
David Magda <dmagda at ee.ryerson.ca>, http://www.magda.ca/
Because the innovator has for enemies all those who have done well under
the old conditions, and lukewarm defenders in those who may do well
under the new. -- Niccolo Machiavelli, _The Prince_, Chapter VI
More information about the Kerberos
mailing list