This also depends on what the client and server ftp programs are. - Danilo
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Donn Cave Sent: Sunday, March 09, 2003 8:18 PM To: [EMAIL PROTECTED] Quoth [EMAIL PROTECTED]: | If I add a user to my W2K Domain controler, and then they log in | from outside my network, will the ftp files and password be encrypted? | | or should I stick to SSH and sftp ? | | I think ??? I understand the network authentication part of | kerberos, but does it also encrypt the password? I think not. help No, it doesn't encrypt the password, but it doesn't transmit it in clear text either. Kerberos uses the password as [... stuff that you have already read about ...] The bottom line is that the password is not only protected from network sniffing, it's even protected from the service you're authenticating to. Kerberos5 (a.k.a. GSSAPI) ftp supports data encryption also, if you want. But you need a Kerberos ftp, which I guess for Windows means Kermit or WRQ Reflection, maybe others. Donn Cave, [EMAIL PROTECTED] ________________________________________________ Kerberos mailing list [EMAIL PROTECTED] https://mailman.mit.edu/mailman/listinfo/kerberos
