[279] in Info-AFS_Redistribution
This AFS-KERBEROS MESS!
daemon@ATHENA.MIT.EDU (Henry Mensch)
Wed Aug 14 14:25:54 1991
From: henry@ads.com (Henry Mensch)
Date: Wed, 14 Aug 91 11:07:42 -0700
To: jnm@stc06.ctd.ornl.gov
Cc: info-afs@transarc.com
Reply-To: henry@ads.com
folks, don't yell at transarc about this ... if you had purchased AFS
and then learned about the compatabilities then you didn't do your
homework. the marketing literature i have from transarc does not even
begin to suggest compatability with MIT Kerberos:
"... The Authentication Server Process controls the dual AFS approach
to extended network security, i.e., authorization and mutual
authentication. The Authentication Server maintains an Authentication
Database for storing encrypted passwords and the AFS
Kerberos(tm)-based encryption key."
note the "Kerberos-based" words ... they're important.
the kerberos mess is only going to get worse when OSF DCE happens;
they have yet another implementation of kerberos which will
(presumably) interoperate with DCE AFS ... but which may not
interoperate with other software vendor-identified as "Kerberos."
# Henry Mensch / Advanced Decision Systems / <henry@ads.com>
