[36854] in Kerberos
Re: Concealing user principal names for realm crossover
daemon@ATHENA.MIT.EDU (Rick van Rein)
Wed Mar 18 10:53:39 2015
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2070.6\))
From: Rick van Rein <rick@openfortress.nl>
In-Reply-To: <55070B19.2090505@mit.edu>
Date: Wed, 18 Mar 2015 09:26:29 +0100
Message-Id: <80A0DA9C-FD99-4065-9EB8-2865F8CF1A47@openfortress.nl>
To: Greg Hudson <ghudson@mit.edu>
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="windows-1252"
Errors-To: kerberos-bounces@mit.edu
Content-Transfer-Encoding: 8bit
Hi Greg,
Thanks once more for an extensive answer! It really helps that you point out the
paths, and even already balance pros and cons.
I also don’t know if Kitten will be interested, but we’re willing to help out if this is
the case. Since we’re doing this for other credential types, it would mark Kerberos
as bad when we left it behind; and since it is a “local” matter (client-side only) I
think we’re going to design and build it first. Then we’ll be sharing here and on Kitten
to see what people think of the result, and if an interest exists we can proceed to an
I-D — after making the local code.
Thanks a lot!
-Rick
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
