Re: HEAD's UP: possible 0day SSH exploit in the wild
Peter Jordan <usernetwork@gmx.info> writes:
> Noah Meyerhans, Wed Jul 08 2009 23:13:30 GMT+0200 (CEST):
>> (Plus we've got Kerberos and don't usually mess around with keys or
>> passwords).
> Do you use kerberos/nfsv4 and ssh keys? If yes, how you handle the
> problem, that the authorized_keys file is not accessable without a krb
> ticket?
If you have Kerberos, why would you use ssh keys? GSS-API is so much
nicer if you already have a Kerberos environment.
--
Russ Allbery (rra@debian.org) <http://www.eyrie.org/~eagle/>
Reply to: