Centralized kerberos authentication
Sam Hartman
hartmans at MIT.EDU
Fri Feb 20 06:29:53 EST 2004
>>>>> "Sensei" == Sensei <noone at nowhere.org> writes:
Sensei> Hi, I'm back. I'm trying to set everything
Sensei> step-by-step. The first step is to set up an
Sensei> authentication server.
Sensei> We're using a linux server and a client. Now the client
Sensei> uses pam_krb5.so but I don't know if this is the right way
Sensei> to authenticate over an insecure network.
No, it is not.
Use ssh with Kerberos GSSAPI support.
Sensei> Can you help me? Can you point me to a simple document on
Sensei> this issues? -- Sensei <senseiwa:tin.it> <icq:241572242>
Sensei> <msn:Sensei_Sen:hotmail.com>
Not really. The issues aren't particularly simple and so no one has
really come up with a simple explanation of them.
It would be possible for someone to implement a turnkey solution; many
argue that Microsoft has.
More information about the Kerberos
mailing list