>Eeeeeuuuwww :-) That would certainly work, but it would be a hellish
>hack. If you _did_ use that scheme, however, there is one drawback that
>I can see. Even if you call ktc_ForgetAllTokens(), the structure that
>holds your token stays around for a while afterwards (2 hours). If you
>have a lot of people in your cell retrieving their mail via this method,
>the structures tend to take up a lot of kernel memory over time and
>cause really slow lookups (the hash table inside the kernel isn't that
>big). I don't have any numbers on this, but I have seen other people
>report problems with similar things in the past.
How is that different from lots of people connecting to a POP server that
just authenticates via a password and userid to afs?
>>I'll have to check and see how the AFS patched 'ssh' does it, cause when it
>>passes the tokens to the next host, they retain the AFS ID XXXX. Whereas
>>when using gettoken and settoken, that information is lost.
>
>The information is definately returned by ktc_GetToken() (it's in
>clientName.name, the 4th argument passed to ktc_GetToken); the token-passing
>rsh doesn't send it (it also doesn't send the cell name, which makes it
>impossible to use AFS rsh across cells, dambit).
Just made some changes to my token passing code, and unfortunately, you can
put ANY information in that field... I was kindof hoping it wouldn't let
you SetToken if the information didn't match...
It just seems a little strange that there isn't any way to ask the
authentication server "who am I authenticated as".
As far as 'rsh' across cells and such, why bother... Just install 'ssh'...
it works a whole lot better, and builds almost everywhere... (i'm currently
using between: aix 3.2.5, hpux 9+10, solaris 2.5, linux 1.2.13, and sgi
irix 5.3). Not to mention it's other benefits (rsa authentication of hosts,
encryption of streams, compression, etc.) and the fact that you can do
rlogin in addition to rsh, and rcp.
-- Nathan
------------------------------------------------------------
Nathan Neulinger Univ. of Missouri - Rolla
EMail: [EMAIL PROTECTED] Computing Services
WWW: http://www.umr.edu/~nneul SysAdmin: rollanet.org
