[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: mod_auth_kerb and Heimdal KDC

To: Brian May <bam@snoopy.apana.org.au>
Subject: Re: mod_auth_kerb and Heimdal KDC
From: joda@pdc.kth.se (Johan Danielsson)
Date: 22 Aug 2002 10:41:50 +0200
Cc: Tillman Hodgson <tillman@seekingfire.com>, heimdal-discuss <heimdal-discuss@sics.se>
In-Reply-To: Brian May's message of "Thu, 22 Aug 2002 08:09:46 +1000"
References: <20020821002752.A10405@seekingfire.com><20020821084229.O28398@odorn.ics.muni.cz><20020821082030.B11193@seekingfire.com><20020821220946.GD26163@snoopy.apana.org.au>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.0807 (Gnus v5.8.7) Emacs/20.7

Brian May <bam@snoopy.apana.org.au> writes:

> I suspect customers were complaining that they couldn't log on from
> any computer

Why am I not surprised.

> Also, on a similar topic, I have heard that it should be possible to
> do kerberos authentication over TLS.

You mean http://www.ietf.org/rfc/rfc2712.txt?

> It is possible to take advantage of this somehow when using https?

Possibly, don't know if anyone has done anything with it. TLS
development is something I follow from a distance.

There is also the SPNEGO stuff that Microsoft is doing, and that
should work with IE:s in w2k and xp.

/Johan

Follow-Ups:
- Re: mod_auth_kerb and Heimdal KDC
  - From: Simon Wilkinson <sxw@dcs.ed.ac.uk>

References:
- mod_auth_kerb and Heimdal KDC
  - From: Tillman Hodgson <tillman@seekingfire.com>
- Re: mod_auth_kerb and Heimdal KDC
  - From: Daniel Kouril <kouril@ics.muni.cz>
- Re: mod_auth_kerb and Heimdal KDC
  - From: Tillman Hodgson <tillman@seekingfire.com>
- Re: mod_auth_kerb and Heimdal KDC
  - From: Brian May <bam@snoopy.apana.org.au>

Prev by Date: Re: arcfour-hmac-md5
Next by Date: Re: mod_auth_kerb and Heimdal KDC
Prev by thread: Re: mod_auth_kerb and Heimdal KDC
Next by thread: Re: mod_auth_kerb and Heimdal KDC
Index(es):
- Date
- Thread