[27846] in Kerberos
Re: Use ssh key to acquire TGT?
daemon@ATHENA.MIT.EDU (Thomas Kula)
Fri Jun 1 09:18:21 2007
Date: Fri, 1 Jun 2007 09:17:51 -0400
From: Thomas Kula <kula@tproa.net>
To: kerberos@mit.edu
Message-ID: <20070601131750.GX9494@mcketrick.tproa.net>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <30810.1180699144@malison.ait.iastate.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Fri, Jun 01, 2007 at 06:59:04AM -0500, John Hascall wrote:
>
> But, your point is well taken. Perhaps
> what would be more useful is if somebody
> like educase served as a central crossrealm
> hub (everyone exchanges keys with them and
> gets a current capaths file).
>
I've often considered the possibility of setting up something
like cross-realm.org to do just this thing in a general case.
But it's never been anything more than a passing fancy, as
there are very few realms where I know that, yes, this person
actually can speak with some authority about $REALM and I
know I'm actually generating cross-realm keys that are sane
and proper.
--
Thomas L. Kula | kula@tproa.net | http://kula.tproa.net/
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
