RE: ITP: pam-krb5
>
> Not when using kerberized telnet, because krb telnet authenticates using the
> Kerberos protocol. The issue is specific to using something like pam-krb5 to
> do Kerberos authentication behind the scenes, without any true Kerberos
> support in the application. OTOH, if you were to telnet from your local
> machine and /then/ run 'kinit' to get a ticket, you would obviously have the
> same problem because you're typing the password cleartext across the network.
>
I fail to see why the pam module can not do the equiv of kinit (thanks I forgot
the command name).
Reply to: