[36419] in Kerberos
Re: kerberos testing server/realm
daemon@ATHENA.MIT.EDU (Jason Edgecombe)
Tue Sep 2 19:48:57 2014
Message-ID: <5406574B.9090601@rampaginggeek.com>
Date: Tue, 02 Sep 2014 19:48:27 -0400
From: Jason Edgecombe <jason@rampaginggeek.com>
MIME-Version: 1.0
To: Greg Hudson <ghudson@mit.edu>, kerberos@mit.edu
In-Reply-To: <5405F60B.4000509@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On 09/02/2014 12:53 PM, Greg Hudson wrote:
> On 09/02/2014 04:20 AM, bodik wrote:
>> But I was thinking, if there would be something like "static_kdc.c" ? some very
>> small implementation without all fancy features like PA, crossrealming, heavy
>> encryption, something which would just send out session keys to everybody having
>> some static secrets for anyone ... ?
>> Is there anything like that or even could be this possible ?
>> Or am I completely our of line ?
> It's possible in theory, but I don't think it would decrease the
> administrative burden of deploying it by much, so it wouldn't warrant
> the development burden of maintaining an additional KDC implementation.
I understand that having a simpler dev/test environment is desirable,
but a test environment is most valuable when it matches the production
environment.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
