Re: Kerberos on .debian.org?

To: debian-devel@lists.debian.org
Subject: Re: Kerberos on .debian.org?
From: Sam Hartman <hartmans@mit.edu>
Date: 10 Mar 2001 08:46:29 -0500
Message-id: <[🔎] tsl3dclspmy.fsf@sweet-transvestite.mit.edu>
In-reply-to: Jason Gunthorpe's message of "Fri, 9 Mar 2001 17:08:37 -0700 (MST)"
References: <[🔎] Pine.LNX.3.96.1010309170603.6640B-100000@wakko.deltatee.com>

>>>>> "Jason" == Jason Gunthorpe <jgg@debian.org> writes:

    Jason> On 9 Mar 2001, Sam Hartman wrote:

    Jason> Or not. We are not doing the central KDC thing for obvious
    Jason> reasons.
    >>  I'm utterly failing to see what these obvious reasons are.  I
    >> suspect there is a misunderstanding of the security guarantees
    >> that debian.org currently has or a misunderstanding of how
    >> Kerberos works.

    Jason> Kerberos requires a secure central KDC machine w/ the
    Jason> possibility for secure replicas. If connectivity between a
    Jason> host and the KDC is broken then the host is effectively
    Jason> dead in the water which is totally unacceptable for
    Jason> us. Further, the fact that a KDC must be very secure to
    Jason> protect the keys does not make it a good solution when we
    Jason> don't have physical control over our boxes.

That assumes that Kerberos is your primary or only login mechanism.
Turbo proposed supporting Kerberos not replacing LDAP shadow entries
with Kerberos.

I want Kerberos as an option because it would be significantly easier
for me, and because once ssh issues are solved it would be
significantly more secure.

I would like to find a way of using Kerberos instead of LDAP for
shadow entries, but I agree with you that would be difficult.

Reply to:

References:
- Re: Kerberos on .debian.org?
  - From: Jason Gunthorpe <jgg@debian.org>

Prev by Date: Re: Package modifying its own control at build?
Next by Date: Re: when is next alsa going in?
Previous by thread: Re: Kerberos on .debian.org?
Next by thread: Re: Kerberos on .debian.org?
Index(es):
- Date
- Thread