[8666] in Athena Bugs
decmips 7.3P: rkinit
daemon@ATHENA.MIT.EDU (Jay Berkenbilt)
Mon Nov 25 10:45:05 1991
Date: Mon, 25 Nov 91 10:18:56 EST
From: ejb@ERA.COM (Jay Berkenbilt)
To: uunet!Athena.MIT.EDU!marc@uunet.UU.NET
Cc: bugs@Athena.MIT.EDU, qjb@Athena.MIT.EDU
In-Reply-To: Marc Horowitz's message of Thu, 21 Nov 91 15:17:17 EST <9111212017.AA23623@hodge>
Thanks for cc-ing me on this message even though I can't really
do anything about it. ;-) It's nice to stay current about what's
going on.
I think your suggestion is a reasonable one. Implementing would
require changes to both the library and the server, but it
shouldn't be too hard to implement. It would require
substantial redesign of the protocol, however. Right now, the
password that you type to get the initial tickets on the server
is also used to generate the authenticator. What you suggest
would require using your existing tickets to authenticate to
rkinitd to allow you to create tickets of your choice. I doubt
anyone is going to make those changes, especially with V5 on the
way.
If you really want marc tickets via rkinit, why don't you rkinit
to get marc tickets owned by marc, rlogin, and chown them? This
would probably be easier than revising the rkinit protocol.
(Fortunately, the protocol has version number checking built in,
so new and exiting clients and servers could be mixed... :-) )
Jay
