[4247] in Kerberos
Re: remote kpasswd
daemon@ATHENA.MIT.EDU (Thor Lancelot Simon)
Thu Nov 24 14:17:03 1994
To: kerberos@MIT.EDU
Date: 24 Nov 1994 17:24:06 GMT
From: tls@cloud9.net (Thor Lancelot Simon)
In article <199411210734.AA18610@rocinante.digex.net>,
Dave McGuire <mcguire@rocinante.digex.net> wrote:
> Sounds to me like you'd want Kerberos implemented (at least enough
>to have kpasswd; you'd need libraries & stuff) on whatever hosts your
>users are coming into through your terminal servers. That way, a user
>can just execute the regular kpasswd program which, presumably, would
>talk to the kadmid running on your kerberos server. How's that sound?
Doesn't sound like such a great idea to me. You want kpasswd to run on the
_terminal server_, so at least the password doesn't have to cross an Ethernet
in the clear.
