On Wed, May 01, 2002 at 05:18:03PM -0500, Amy Tanner wrote: >> similar to the problem with WEP encryption and public networks. It's >> essentially useless since everyone knows what the key is. > >No this is not true. Each user has his own kerberos password. This is >used to login to the kerberos server. Yeah, you create a principle for each user which has a passphrase. Then the user runs a command and is asked to entery thier passphrase. Then they get thier "ticket". It's pretty neat. But converting to kerberos from some other form of centralized authentication/authorization. -- Ben Lutgens | http://people.sistina.com/~blutgens/ System Administrator | http://www.sistina.com/ Sistina Software Inc. | "If you love something set it free, if it doesn't come back to you hunt it down and set it on fire" -- George Carlin -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 230 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020501/2021b47d/attachment.pgp