[599] in Kerberos
authentication advice needed
daemon@TELECOM.MIT.EDU (Aaron Wohl)
Thu Jan 19 17:46:14 1989
From: Aaron Wohl <aw0g+@ANDREW.CMU.EDU>
To: +dist+/afs/andrew.cmu.edu/usr0/postman/DistLists/ams-folks.dl@ANDREW.CMU.EDU,
The guardian program (the thing that starts remote messageservers) needs to
accept commands from operator console programs. I need some way to be sure
that the command packets are not being faked.
Requirements:
it has to work when afs authentication is down
it has to work when vice is down
if a malicious party watches the packet stream they can't fake connections
There is no need to filter duplicate requests
The encryption routines are allowed to take a long time (say 10 seconds)
If you get a hold of the password file that guardian reads you can't tell what
the unencryped password is.
It has to work when malicious parties can fake there ethernet and IP addresses
Any hints from the authentication gurus out there would be much apreciated.
Aaron
