[2631] in Kerberos
Re: Solaris 2.1 Kerberos
daemon@ATHENA.MIT.EDU (Michael T. Stolarchuk)
Thu Mar 18 17:06:49 1993
To: eichin@Athena.MIT.EDU ("Mark W. Eichin")
Cc: cwm@lanl.gov, kerberos@Athena.MIT.EDU
Cc: mts@terminator.rs.itd.umich.edu, mts@terminator.rs.itd.umich.edu
In-Reply-To: Your message of "Thu, 18 Mar 93 16:06:16 EST."
Date: Thu, 18 Mar 93 16:54:01 -0500
From: "Michael T. Stolarchuk" <mts@terminator.rs.itd.umich.edu>
"Yes, that's exactly what I want (assuming RX is used for the
bulk data transfer as well as control messages.) What needs to be done
to make it happen? Source changes, config changes, client or server?"
Its a piece of cake...
The only reason we haven't done it locally is cause
the change has to be made on file and server sides...
The protocol can't sense which level of encryption you are
using, so both client and server have to agree when the
RX connection is established, that all bytes will
be encrypted (another service level in the NewService/
NewConnection interface).
BTW: that level of encryption is already in rxkad, since
its USED for the security server connections.
mts.
