[3191] in Kerberos
Re: S/Key and Kerberos
daemon@ATHENA.MIT.EDU (Steve Lunt)
Thu Apr 28 12:04:45 1994
Date: Thu, 28 Apr 1994 11:48:49 -0400
From: Steve Lunt <lunt@ctt.bellcore.com>
To: brian@nothing.ucsd.edu
Cc: kerberos@MIT.EDU
Brian,
I looked into this with one of the folks here who initially
worked on S/Key, and we determined that you basically can't do it.
One problem was the master/slave arrangement. The server would have
to inform all other Kerberos servers in the realm immediately after
an S/Key TGT request.
-- Steve
