[986] in Kerberos_V5_Development
removing user-user authentication from rcp client
daemon@ATHENA.MIT.EDU (Sam Hartman)
Wed Jan 31 16:17:24 1996
Date: Wed, 31 Jan 1996 16:17:18 -0500
From: Sam Hartman <hartmans@MIT.EDU>
To: krbdev@MIT.EDU
There is no good reason for rcp not to use rsh -x and there
are several good reasons for it to do so. In particular, the current
implementation requires the user to have tickets on both sides of the
connection. I will investigate using a protocol compatible with rsh
-x, and if it looks fairly easy, implement the change. I will retain
server support for the old method at the current time, although I
think we should consider it depricated.
Also, since I haven't heard any objections to removing the TGS
enctypes check on the cccache code, I wil go ahead and do so. This
means that if a specific enctype is not request, any ticket of any
enctype found in the ccache will satisfy the request.
--Sam
