ucred_t and kerberos

Jeffrey Hutzelman jhutz at cmu.edu
Wed Jan 10 19:26:17 EST 2007

On Monday, January 08, 2007 10:23:44 PM -0500 Marcus Watts <mdw at umich.edu> 

> So, in tomorrow's world, let us suppose we had (say) a linux machine, a
> windows machine, & a sun machine, all happily exchanging ucred_t's via
> tcp.  How can they each know that the ucred_t that they receive hasn't
> been tampered with on the wire (after all, streams are internal to
> solaris; on the wire it's pure tcp/ip).  What extension to tcp allows
> this traffic to pass?

If I know Nico, the answers to this and several of the other questions you 
pose all involve IPsec.

-- Jeff

More information about the krbdev mailing list