[2627] in Kerberos
Solaris 2.1 Kerberos
daemon@ATHENA.MIT.EDU ("Mark W. Eichin")
Thu Mar 18 12:06:50 1993
Date: Thu, 18 Mar 93 11:43:50 EST
From: eichin@Athena.MIT.EDU ("Mark W. Eichin")
To: isoft!jec@uunet.UU.NET
Cc: cwm@lanl.gov, kerberos@Athena.MIT.EDU, jec@uunet.UU.NET
In-Reply-To: "Jonathan E. Chinitz"'s message of Thu, 18 Mar 93 08:53:49 -0500 <9303181439.AA28536@relay2.UU.NET>
>> Does the client present an authenticator+ticket to the NFS server
>> *every time* a file access is attempted?!
Since Chuck.McManis@eng.sun.com is on the list, he can probably answer
this much better than I can... I can't seem to find man pages that
describe what's going on in any detail. The kdestroy man page does say:
> In addition to removing the ticket file, kdestroy also
> invalidates all Kerberos credentials for this user being
> held in the kernel for use with NFS requests.
which may just be a cached session key to avoid going to a local file
for every NFS access. The behavior is certainly that after a kdestroy,
access to files is lost.
I'd like to know if the protocol has support for encryption as
well. (If so, that's a major advantage of AFS :-)
_Mark_ <eichin@athena.mit.edu>
MIT Student Information Processing Board
Cygnus Support <eichin@cygnus.com>
