Re: HEAD's UP: possible 0day SSH exploit in the wild
Russ Allbery, Thu Jul 09 2009 20:45:57 GMT+0200 (CEST):
> Peter Jordan <firstname.lastname@example.org> writes:
>> I want to login passwordless to my ssh server from the internet. vpn
>> is not avaiable and kerberos is not acccessable from outside the
>> lan. How?
> Fix the last problem. Otherwise, yes, you can't use Kerberos.
> Authentication systems really need to be exposed to all sites from which
> one wishes to authenticate or they're not horribly helpful.
It is not my decission to isolate kerberos.
Is it safe to open kerberos for the world?