[362] in java-interest
Re: Enlighten me please
daemon@ATHENA.MIT.EDU (Peter Busser)
Fri Jun 16 11:34:24 1995
From: peter@vpro.nl (Peter Busser)
To: pnema@attmail.com (Paul Nema)
Date: Fri, 16 Jun 1995 17:08:02 +0100 (MET DST)
Cc: java-interest@java.sun.com
In-Reply-To: <winATT-2.500-pnema-84> from "Paul Nema" at Jun 16, 95 10:19:45 am
Hi, Paul!
> Peter
> In response to your email concerning java. Please excuse my
> ignorance but what is kerberos/kerberized. Is this a reference
> to some form of security implementation. Where can
> I get more info on the subject. Thanks in advance.
Well, Kerberos is a secure authentication protocol. It is used so that the
server and the client know that they are communicating with the correct
server or client. With Kerberos users log in to the network, not just a
host. During login a user gets a so called "ticket" and with that ticket
he/she can get access to other services that the network provides without
typing in passwords. This is not suitable for wide scale implementation,
as it involves one or more central servers that can be trusted. So it
has some advantages and disadvantages compared to SSL.
Net.references: http://www.cygnus.com/ (There is a lot about Kerberos on that
site, including a FAQ, papers, etc.)
Books: Firewalls and Internet security by Cheswick and Bellovin
and Practical UNIX security from O'Reilly & Associates.
Both books describe the protocol, not how it is used or implemented.
For sources: ftp://athena-dist.mit.edu/pub/athena/kerberos/
I hope this helps... Anyway, have fun!
Groetjes,
Peter Busser
--
UNIX sysadmin, database admin, TCP/IP netadmin, security specialist
Tel.: +31-35-712709
I'm the operator with my pocket calculator...
-
Note to Sun employees: this is an EXTERNAL mailing list!
Info: send 'help' to java-interest-request@java.sun.com
