[6364] in Kerberos
Re: K4 Telnet With Session Encryption
daemon@ATHENA.MIT.EDU (Richard Basch)
Thu Dec 14 18:15:42 1995
Date: Thu, 14 Dec 1995 18:03:25 -0500
To: mikef@ack.berkeley.edu (Mike Friedman)
Cc: kerberos@MIT.EDU
In-Reply-To: <4apmmp$jmd@agate.berkeley.edu>
From: "Richard Basch" <basch@lehman.com>
On , 14-December-1995, "Mike Friedman" wrote to "kerberos@MIT.EDU" saying:
> I'm pretty sure this has been asked here before, though I've not seen a good
> answer. Is there a K4 telnet for the Mac or PC/Windows that supports session
> encryption? I've got the Cygnus clients that do authentication only and
> I know there are other versions out there with the same limitation. But it's
> becoming increasingly important for me to support *fully-encrypted* telnet
> sessions from Macs and PC's in our K4 environment.
>
> Thanks.
>
> --
>
> ------------------------------------------------------------------------
> Mike Friedman mikef@ack.Berkeley.EDU
> Data Communication & Network Services +1-510-642-1410
> University of California at Berkeley http://www.Berkeley.EDU/~mikef
> ------------------------------------------------------------------------
While there have been some implementations of telnet with encryption,
including the support of Kerberos V4, there are no official versions or
standards regarding the encryption option. In addition, the encryption
option as was implemented, is subject to being hijacked such that
sessions are not actually encrypted. Additional versions have had
problems where the data was merely obfuscated, not properly encrypted.
The good news is that there is work being done in this area, but it is
not ready yet.
--
Richard Basch URL: http://web.mit.edu/basch/www/home.html
Lehman Brothers, Inc. Email: basch@lehman.com, basch@mit.edu
101 Hudson St., 33rd Floor Fax: +1-201-524-5828
Jersey City, NJ 07302-3988 Voice: +1-201-524-5049
