[104] in Kerberos
Re: simpler approach to RVD-kerberos
jon@ATHENA.MIT.EDU (jon@ATHENA.MIT.EDU)
Sun Aug 9 21:28:50 1987
From rlk@ATHENA.MIT.EDU Sat Sep 27 14:13:31 1986
Date: Sat, 27 Sep 86 14:12:00 EDT
From: Robert L. Krawitz <rlk@ATHENA.MIT.EDU>
Sender: rlk@ATHENA.MIT.EDU
To: Jerome H. Saltzer <Saltzer@ATHENA.MIT.EDU>
Cc: kerberos@ATHENA.MIT.EDU, rvd-info@ATHENA.MIT.EDU, yba@ATHENA.MIT.EDU
In-Reply-To: Jerome H. Saltzer's message of Sat, 27 Sep 86 12:09:38 EDT
Subject: Re: simpler approach to RVD-kerberos integration
Date: Sat, 27 Sep 86 12:09:38 EDT
From: Jerome H. Saltzer <Saltzer@ATHENA.MIT.EDU>
Administration of student lockers would be done by creating packs
with the name of the owner as the owner, and with random strings as
passwords. I would be inclined not to even admit the existence of
the random strings, so as not to encourage the procedure of
exchanging files by exchanging passwords; the ability to allow
someone else spinup access is better postponed till we have an ACLS
and can do it appropriately.
Hiding that sort of information is useless. For something as vital as
sharing information, people will learn how sooner or later. How are
people going to share files under these circumstances? By the obvious
expedient of giving out their password.
Comments?
Why not allow people to specify a different password for r/o spinup,
and use the same sort of procedure? Then people at least don't have
to give out their login password just to give other people the [bogus]
sort of access that r/o spinup allows?
[I won't except by this reference rehash the old arguments about rvd
lockers. As usual, the entire flame can be found in
/@/priam/mit/r/l/rlk/Rmail/rvdwars.]
Robert^Z
