[3195] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Ticket cracking (Re: Is there Kerberos for VMS?)

daemon@ATHENA.MIT.EDU (Joe Ramus)
Thu Apr 28 17:27:40 1994

Date: Wed, 27 Apr 94 11:09:15 PDT
From: ramus@nersc.gov (Joe Ramus)
To: kerberos@MIT.EDU

>> 
>> In article <25APR199423574507@ariel.lerc.nasa.gov>, uugblum@ariel.lerc.nasa.gov (Greg Blumers) writes:
>> |> - No intrusion detection system.  Incorrect passwords can be entered
>> |>   forever.  With an unlimited number of tries, I don't see why a
>> |>   Kerberized password can't be cracked.
>> 

>> I don't need repeated logins to test a key, I can take an encrypted ticket
 and crack it in the privacy of my own host.
>> 
>> -- 
>> Peter Lister                             Email: p.lister@cranfield.ac.uk

I thought the design of Kerberos 5 prevents the cracking of an encrypted
ticket.  Or at least makes it a lot more difficult.

----------------------------------------------------------------
| Joe Ramus  NERSC Livermore  (510) 423-8917   ramus@nersc.gov |
----------------------------------------------------------------


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[3195] in Kerberos

Ticket cracking (Re: Is there Kerberos for VMS?)

daemon@ATHENA.MIT.EDU (Joe Ramus)Thu Apr 28 17:27:40 1994

daemon@ATHENA.MIT.EDU (Joe Ramus)
Thu Apr 28 17:27:40 1994