Key Managemet

bacolod@hushmail.com bacolod at hushmail.com
Wed Feb 12 14:42:38 EST 2003


So the service key does not support data encryption during a Kerberized ( telnet -x ) session?

-bacolod



On Wed, 12 Feb 2003 11:09:25 -0800 Marcus Watts <mdw at umich.edu> wrote:
>bacolod at hushmail.com writes:
>> ATM switch is a Kerberos client
>> ATM switch secret key needs to be updated
>> The "most practical" way to update the secret key on the ATM switch 
>is to log onto it via Kerberized (w/ data encryption on) telnet 
>(ssh not available) and perform the ATM switch "Get secret key" 
>function which uses either FTP or HTTP (scp not available) (I'm 
>hoping Kerberized FTP is available).
>> 
>> My question is, what happens to the established Kerberized telnet 
>session when the ATM switch sectret key is updated?
>> 
>> Out of band management would be nice but it isnt very practical 
>in this particular application.
>
>Nothing happens.  The service key is only used when the connection 
>is
>initially made.




Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2 

Big $$$ to be made with the HushMail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427


More information about the Kerberos mailing list