[124] in Kerberos
Re: Authentication forwarding
jon@ATHENA.MIT.EDU (jon@ATHENA.MIT.EDU)
Sun Aug 9 21:31:17 1987
From srz@athena.MIT.EDU Wed Oct 22 10:48:56 1986
From: srz@athena.MIT.EDU
Date: Wed, 22 Oct 86 10:47:11 EDT
To: kerberos@athena.MIT.EDU
Subject: Re: Authentication forwarding
But how can a separate command forward tickets between two hosts in
a secure way? There needs to be a session key kept between the two
parties, which is something that rlogin would have to do. I like the
idea of being able to manually forward tickets, though; I would then
be tempted in writing a "ksu", which is like "su", except it requires
kerberos tickets, not passwords. Keeping login passwords off the network
doesn't help if people have to type in root passwords...
-stan
