[4248] in Kerberos
Re: remote kpasswd
daemon@ATHENA.MIT.EDU (Dave McGuire)
Thu Nov 24 15:58:40 1994
Date: Thu, 24 Nov 1994 15:37:34 -0500
From: Dave McGuire <mcguire@rocinante.digex.net>
To: tls@cloud9.net (Thor Lancelot Simon)
Cc: kerberos@MIT.EDU
In-Reply-To: Re: remote kpasswd (Thor Lancelot Simon)
On November 24, you wrote:
> In article <199411210734.AA18610@rocinante.digex.net>,
> Dave McGuire <mcguire@rocinante.digex.net> wrote:
> > Sounds to me like you'd want Kerberos implemented (at least enough
> >to have kpasswd; you'd need libraries & stuff) on whatever hosts your
> >users are coming into through your terminal servers. That way, a user
> >can just execute the regular kpasswd program which, presumably, would
> >talk to the kadmid running on your kerberos server. How's that sound?
>
>
> Doesn't sound like such a great idea to me. You want kpasswd to run on the
> _terminal server_, so at least the password doesn't have to cross an Ethernet
> in the clear.
Yup...I was having a synapse failure when I typed that... :) The
solution seemed so...simple... :)
-Dave
