<quote who="O Plameras"> > Kerberos can because it comes with kerberized telnet, rsh, rlogin, rcp, > etc. that lets us connect to another machine in the realm. > > Of course I can ssh to machines that are members of kerberos realm. But > why should I need ssh when I have kerberos ? The reason I'm running > kerberos is it is a stronger cryptographic security tool than SSH.
Because kerberos is an *authentication* system, and does not provide any means for remote access. The tools you list above are indeed 'kerberised' for the purposes of authentication, but they are still the same insecure, plain-text protocol tools as they always have been. If you are using telnet instead of ssh, your remote access is *not* encrypted. Ever typed a root password over telnet? Not I. - Jeff -- linux.conf.au 2005: Canberra, Australia http://lca2005.linux.org.au/ "Clowns to the left of me, jokers to the right, here I am: Stuck in the middle with you." - Steeler's Wheel, Stuck in the Middle With You -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
