> because frankly, kerberos was not designed with http in mind. ms will > have to come up with ugly hacks to make this work.
Is this because of the statelessness of http? We use mod_auth_dce and mod_auth_extern to authenticate users for our web services. This seems to work well in our environment. > > this was discussed at length on the decentralization mailing list, see > http://groups.yahoo.com/group/decentralization/messagesearch?query=kerberos I didn't see a reply to message 4018 from the search you suggested. Was there a reply that showed the argument against what the gentleman suggested? Jonathan _______________________________________________ jdev mailing list [EMAIL PROTECTED] http://mailman.jabber.org/listinfo/jdev
