[2630] in Kerberos
re: Solaris 2.1 Kerberos
daemon@ATHENA.MIT.EDU ("Mark W. Eichin")
Thu Mar 18 16:16:16 1993
Date: Thu, 18 Mar 93 16:06:16 EST
From: eichin@Athena.MIT.EDU ("Mark W. Eichin")
To: mts@terminator.rs.itd.umich.edu
Cc: cwm@lanl.gov, kerberos@Athena.MIT.EDU
In-Reply-To: "Michael T. Stolarchuk"'s message of Thu, 18 Mar 93 15:23:09 -0500 <9303182023.AA06132@terminator.rs.itd.umich.edu>
>> I'm not sure what you mean here. Do you want every byte in
>> the RX packets encrypted (cause that can be done), or are
Yes, that's exactly what I want (assuming RX is used for the
bulk data transfer as well as control messages.) What needs to be done
to make it happen? Source changes, config changes, client or server?
Right now, it appears that the only "solutions" to the problem
of file system access/exposure over commercial network providers are
encrypting gateways (which were being demoed at Interop last week) or
perhaps an encrypted "wormhole" (which I've considered writing.)
Kerberized NFS is a step in the right direction, as is AFS, but
encryption is a necessary step.
_Mark_
