[6088] in Kerberos
How does telnet/telnetd work compared with sclient/sclientd ?
daemon@ATHENA.MIT.EDU (Jim Mahoney)
Wed Nov 1 10:17:28 1995
To: kerberos@MIT.EDU
Date: Tue, 31 Oct 1995 20:28:49 -0800
From: mahoney@marlboro.edu (Jim Mahoney)
I have been confused about how the kerberos telnet client and telnetd server
function, in terms of what the client needs installed at the remote site
to be able to run in auth and/or encrypt mode.
I understand, I think, how the sample client/server works, which requires
that the client be installed with
1) an entry in the kerberos database, including the name of the client
machine,
2) an srvtab "password" on the client machine.
However, is this also required for telnet? If I'm at some remote site,
half-way across the world from my home institution, and want to telnet
back to my office workstation, and both both machines are running
some form of kerberos, how can the remote machine already have installed
an srvtab that mentions my home machine by name?
Similarly, if I'm running a Mac client, such as the MacLeland from
Stanford and NCSA Telnet, which support the kerberos protocol
(in some form, at least), I can
1) get a kerberos ticket with MacLeland, and then
2) use NCSA telnet in auth/encrypt mode to take advantage of the ticket.
But is there anything like an "srvtab" on the Mac? Where? And if not,
what form of entry in the kerberos database is needed for the
NCSA telnet connection?
I've read the FAQ's and many man pages, but this hasn't become clear
to me. But I think that the issues are the same for v4 or v5, and
that I'm missing something basic.
Thanks,
--
Jim Mahoney
Physics & Astronomy
Marlboro College
