[5016] in Kerberos
Kerberos Limitations in FAQ
daemon@ATHENA.MIT.EDU (Drexel Atkinson)
Fri Apr 21 19:26:05 1995
To: kerberos@MIT.EDU
Date: 20 Apr 1995 15:22:36 GMT
From: datkins@spam.unm.edu (Drexel Atkinson)
The discussion in part 2.1 of the FAQ indicate a spoofing mechanism which
I'm not sure i understand entirely. If a user walks up to a public workstation
and attempts a login as a non-existent user how can he run any other program,
as suggested in the faq. He has not logged in yet or completed the login.
I'm sure i'm missing something here, but we're not running kerberos yet....just
investigating its pros and cons.
Could someone reword that description with a little more detail...also, has
anyone found a way around it for a public workstation. If we go with kerberos,
we will certainly have a number of public workstations so it kinda defeats the
purpose of kerberos if it can be easily spoofed.
thanks,
drex
---------------
datkins@unm.edu "Into the Backing"
CIRT-ACS University of New Mexico
----------------------------------