[6406] in Kerberos
Re: Thinking of moving to kerberos, lots of questions
daemon@ATHENA.MIT.EDU (Thor Lancelot Simon)
Sun Dec 24 08:32:57 1995
To: kerberos@MIT.EDU
Date: 24 Dec 1995 04:30:07 -0500
From: tls@rek.tjls.com (Thor Lancelot Simon)
In article <199512240320.WAA13253@toxicwaste.media.mit.edu>,
Derek Atkins <warlord@MIT.EDU> wrote:
>> drat. I was afraid of that. Any sources out there that I can use?
>
>When I was a summer intern at Bellcore a few years ago I wrote one.
>But I don't have the source anymore. Basically, what you do is take a
>login that understands both kerberos and YP, hack it up a little to do
>the appropriate checks, and then add some of the kadmin "ank" code to
>add a new key to the database.
>
>Alternatively, you can provide a user-space program that does the same
>thing -- ask a user for a password, compare it to the passwd entry in
>YP, and then add the password to kerberos. This, too, would be fairly
>simple to write but I don't have code for you...
>
>Perhaps someone else has code to share?
Berkeley's "register" client and server did this. Unfortunately they aren't
really compatible with kadmin; you'd have to run a separate kadmind and
registerd, and modify your kdb_init to create the keys register wants to use.
But if you want to look at the source, it's in the domestic 4.4Lite
distribution.
--
Thor Lancelot Simon tls@rek.tjls.com
Where is the day that melted into one rich noise? --Thomas Wolfe
