[OpenAFS] Web Server and Tokens
Derek Atkins
OpenAFS" <openafs-info@openafs.org
18 Feb 2002 21:52:27 -0500
It would not eliminate the need for the kas server, because IPs
are only used for file acls, not for administrative tasks. You
would still need KAS (or Kerberos) to administer your cell.
-derek
"Victor" <victord@paid.com> writes:
> > It depends on your threat model.
> >
> > You could set an IP ACL, or you could set up a cron job to give
> > you real tokens. Either case means that someone who breaks into
> > your machine has the full priviledges of that "user".
>
> would setting up an IP ACL eliminate the need for the kas server?
> Would IP ACL authenticate based on the IP of the client?
>
>
>
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
--
Derek Atkins
Computer and Internet Security Consultant
derek@ihtfp.com www.ihtfp.com