[771] in Kerberos
Re: Proposal for long-lived revocable tickets.
daemon@TELECOM.MIT.EDU (Rich Salz)
Mon Jul 24 15:25:53 1989
From: Rich Salz <rsalz@BBN.COM>
To: chariot@ATHENA.MIT.EDU
Cc: Kerberos@ATHENA.MIT.EDU, krb-protocol@ATHENA.MIT.EDU
>Since getting a very long ticket is a big security risk, it should be
>brought to the user's or to the administrator's attention.
Perhaps. But not as a feature of the protocol. In a large, automated
distributed system such things as mail to bring to attention are bad.
I can imagine a database application where the DB server has enough
state so that a ticket is used only once, or a number-cruncher where
I wanna factor a 500-digit possible prime, or run a simulation of a
complex chemical reaction... whatever.
I understand that things like long tickets are scarey, but then so
is the ability to be able to do "cat >/vmunix".
/r$
