|
| From: | Mike O'Dell |
| Subject: | Re: [Nmh-workers] cleaning out the cobwebs |
| Date: | Thu, 04 Nov 2010 17:12:06 -0400 |
| User-agent: | Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6 |
there's no Kerberos V that I know of.
MS and Apple both use K-IV (MS's being slightly perverted)
as the basis of their distributed authentication
(single sign-on) system.
for small apps, running an "ssh vpn" accomplishes some
of what a full Kerberos deployment can do, but certainly
not all of it. if you need to manage the authentication
environment on thousands of machines located around the world
using only a few people, i don't know of anything, off the
top of my head, that can do the job as well or as simply.
so why not run Kerberos IV?
it beats the heck out of trying to manage a large PKI deployment.
-mo
On 11/4/10 4:14 PM, Lyndon Nerenberg wrote:
On 10-11-04 11:44 AM, Mike O'Dell wrote:i strongly suggest that KPOP not be deprecated unless you can prove there are no sites using Kerberized POP.You are still running Kerberos IV? Really?
| [Prev in Thread] | Current Thread | [Next in Thread] |