Re: transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)

To: debian-project@lists.debian.org
Cc: Steve Langasek <vorlon@debian.org>
Subject: Re: transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)
From: Bastian Blank <waldi@debian.org>
Date: Sun, 31 Aug 2008 11:56:43 +0200
Message-id: <[🔎] 20080831095643.GA28801@wavehammer.waldi.eu.org>
Mail-followup-to: Bastian Blank <waldi@debian.org>, debian-project@lists.debian.org, Steve Langasek <vorlon@debian.org>
In-reply-to: <[🔎] 20080831055459.GC13918@dario.dodds.net>
References: <20080827120031.GA32039@intrepid.palfrader.org> <20080828071223.GC7061@dario.dodds.net> <20080828193141.GK9633@anguilla.noreply.org> <[🔎] 20080830123208.GD9633@anguilla.noreply.org> <[🔎] 20080830164857.GA23848@country.nixsys.be> <[🔎] 20080830231632.GA9572@wavehammer.waldi.eu.org> <[🔎] 20080831055459.GC13918@dario.dodds.net>

On Sat, Aug 30, 2008 at 10:54:59PM -0700, Steve Langasek wrote:
> On Sun, Aug 31, 2008 at 01:16:32AM +0200, Bastian Blank wrote:
> > Negotiate auth does not provide confidentiality or integrity protection
> > different to the normal use of kerberos.
> Well, ok, but you're negotiating *authentication*.  Why are confidentiality
> and integrity protection required for that?

If you use kerberized telnet you get that for free, the session key is
part of the setup.

>                                              Firefox doesn't exactly have
> HTTP basic auth support disabled by default, either...

You need to supply a username and password for each basic auth, so you
know what you are doing. Kerberos runs in the background, so the user
can't see that it got authenticated.

Bastian

-- 
If some day we are defeated, well, war has its fortunes, good and bad.
		-- Commander Kor, "Errand of Mercy", stardate 3201.7

Reply to:

References:
- transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)
  - From: Peter Palfrader <weasel@debian.org>
- Re: transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)
  - From: Wouter Verhelst <wouter@debian.org>
- Re: transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)
  - From: Bastian Blank <waldi@debian.org>
- Re: transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)
  - From: Steve Langasek <vorlon@debian.org>

Prev by Date: Re: transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)
Next by Date: Re: transfering files between *.debian.org hosts
Previous by thread: Re: transfering files between *.debian.org hosts (was: people.debian.org to move to ravel)
Next by thread: Re: transfering files between *.debian.org hosts
Index(es):
- Date
- Thread