Henry B. Hotz hotz at jpl.nasa.gov
Thu Nov 19 20:15:45 EST 2009

On Nov 18, 2009, at 9:03 AM, krbdev-request at mit.edu wrote:

> I'm pleased to announce an IAKERB implementation for MIT Kerberos:
> 	http://k5wiki.kerberos.org/wiki/Projects/IAKERB
> IAKERB allows clients that cannot reach a KDC to proxy credentials  
> acquisition via a GSS exchange with a service. This should reduce the  
> dependence on protocols such as NTLM and Digest outside the firewall.

I applaud the availability of a solution.  I bemoan the widespread, naive use of firewalls that creates the problem in the first place.  *sigh*

The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz at jpl.nasa.gov, or hbhotz at oxy.edu

More information about the krbdev mailing list