[23584] in Kerberos

home help back first fref pref prev next nref lref last post

Re: A Kerberos authentication scheme.

daemon@ATHENA.MIT.EDU (Sam Hartman)
Wed Mar 23 22:48:09 2005

To: Michael Norwick <ctx37888@centurytel.net>
From: Sam Hartman <hartmans@mit.edu>
Date: Wed, 23 Mar 2005 22:40:20 -0500
In-Reply-To: <4241316D.1080503@centurytel.net> (Michael Norwick's message of
 "Wed, 23 Mar 2005 03:05:49 -0600")
Message-ID: <87ll8dd84b.fsf@luminous.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
cc: Kerberos Mailing List <kerberos@mit.edu>
Errors-To: kerberos-bounces@mit.edu

It has been my experience that from the end-user standpoint, Kerberos
scales down well.  I think that's a significant part of why Apple and
Microsoft have adopted it for their server authentication solutions.

However, it has been my experience that many of the open-source
authentication tools based on Kerberos do not scale down well from the
standpoint of the system administrator.  This is not a technology
problem; it is a software implementation problem.

Put another way: there is significant room for value add in tools that
make Kerberos and AFS easy to set up.

--Sam

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post