[3719] in Kerberos
Re: Kerberos 5 on terminal server
daemon@ATHENA.MIT.EDU (Ted Lemon)
Mon Aug 15 15:16:21 1994
To: marc@cam.ov.com (Marc Horowitz)
Cc: kerberos@MIT.EDU
In-Reply-To: Your message of "15 Aug 1994 17:01:12 GMT."
<MARC.94Aug15130113@dun-dun-noodles.cam.ov.com>
Date: Mon, 15 Aug 1994 12:01:01 -0700
From: Ted Lemon <mellon@vix.com>
> When can we expect to see applications, like kerberized rlogin, telnet,
> etc? This is far more important to me than password changing.
It's basically true that we need kerberized telnet or rlogin (possibly
with credential forwarding) in order to support secure logins from
terminal servers. However, this is true of *any* application which
requires you to type in your password - the password must be typed in
to a machine to which you are directly connected with no broadcast
network in between. So I would say that implementing a password
changer is just as important as implementing kerberized telnet.
The Xyplex server isn't useful to me until they have implemented both
of these things.
BTW, I sincerely hope that this box prevents people from telnetting in,
grabbing an incoming modem, and simulating a Xyplex login prompt...
_MelloN_
--
Ted Lemon mellon@vix.com
+1 415 477 5045
Fight to preserve your freedom to program: Join the League for
Programming Freedom! For info, contact lpf@uunet.uu.net.
