SSH2 Protocol with Kerberos authentication

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:04



I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:09


I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:22


I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:27


I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:31


I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:38


I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:40


I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by yan_can_c.. » Fri, 27 Apr 2001 23:19:34


I am considering this combination to beef up
our security.  AFAIK, this seems to be about
the best when considering price and security.

Are there any downfalls to this implementation?
(My primary concern is security.)

 
 
 

SSH2 Protocol with Kerberos authentication

Post by Cor Gest j » Sun, 29 Apr 2001 13:55:04


I'd start by avoiding 6 copies of the same message being sent,
by your MTA........
X-MIMETrack: Serialize by Notes Client on Jeremy Huber/ELLSWORTH/SERVICES/EMPLOYEE/EDMS(Release
 5.0.5 |September 22, 2000) at 04/26/2001 08:20:03 AM,
 Serialize complete at 04/26/2001 08:20:03 AM,
 Serialize by Notes Client on Jeremy Huber/ELLSWORTH/SERVICES/EMPLOYEE/EDMS(Release
 5.0.5 |September 22, 2000) at 04/26/2001 08:20:08 AM,
 Serialize complete at 04/26/2001 08:20:08 AM,
 Serialize by Notes Client on Jeremy Huber/ELLSWORTH/SERVICES/EMPLOYEE/EDMS(Release
 5.0.5 |September 22, 2000) at 04/26/2001 08:20:22 AM,
 Serialize complete at 04/26/2001 08:20:22 AM,
 Serialize by Notes Client on Jeremy Huber/ELLSWORTH/SERVICES/EMPLOYEE/EDMS(Release
 5.0.5 |September 22, 2000) at 04/26/2001 08:20:26 AM,
 Serialize complete at 04/26/2001 08:20:26 AM,
 Serialize by Notes Client on Jeremy Huber/ELLSWORTH/SERVICES/EMPLOYEE/EDMS(Release
 5.0.5 |September 22, 2000) at 04/26/2001 08:20:31 AM,
 Serialize complete at 04/26/2001 08:20:31 AM,
 Serialize by Notes Client on Jeremy Huber/ELLSWORTH/SERVICES/EMPLOYEE/EDMS(Release
 5.0.5 |September 22, 2000) at 04/26/2001 08:20:34 AM,

seems there is some `control' missing in the mail-departement also ...;-)

cor

--
(defvar my-computer '((OS . "GNU Emacs") (Boot-Loader . "GNU Linux")))
/*    If GNU/LINUX has no solution, you've got the wrong problem    */
/*    Never install Slackware..........You might learn to use IT    */

 
 
 

1. OpenSSH protocol version 2 doesn't support Kerberos authentication

Hi!

This is simply an informative message.

I have just deployed Kerberos authentication on my LAN. However, I have
been smashing my head against a wall everytime I tried to configure and
use OpenSSH with Kerberos authentication.

Such situation led me to browse the OpenSSH sources and, to my dismay, I
have found that Kerberos V5 authentication is *not* implemented for
protocol version 2, only in protocol version 1. Just take a look at
sshconnect1.c and sshconnect2.c to check.

So I reconfigured all my RHL9 boxes to just use Protocol 1. Now, OpenSSH
and Kerberos work nicely and it's just beautiful to be able to log on at
my laptop and being able to ssh to any machine in my LAN without
supplying a password. This is Unix single-sign-on came true...

--
Please AVOID sending me WORD, EXCEL or POWERPOINT attachments.
See http://www.fsf.org/philosophy/no-word-attachments.html
Linux Registered User #287198

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in

More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

2. cdrom can't unmount after eject, have to reboot! grrrrr

3. Any way to configure ssh2 server to accept ssh1 protocol

4. Log fiels

5. ssh2 public key authentication????

6. Netscape problem w/Apache

7. SSH2 authentication question

8. ghost processes from crontab ?!

9. SSH2: Authentication fails

10. SSH2 & public key authentication?

11. ssh2 hangs after authentication

12. Centralized Authentication Problem - Not exactly NIS - Not exactly Kerberos

13. Kerberos authentication with Windows 2000