> > GSSAPI/Kerberos are network authentication protocols what we want here > > is access to an encryption key.
Perhaps the point Roland is making is like Apple Key Chain
to have the lofi encryption key available if something like
Kerberos or rpcsec_gss is used as the account authority.
> iSCSI is another story. Perhaps Roland was thinking of iSCSI?
Would that be to unlock a keystore on the machine when logging in
that feeds the key to a crypto iSCSI protocol?
Gary..
