[OpenAFS] Tokens that do not expire

[Ken Hornstein]

>and there are scripts out there that will reauthenticate periodically
>so that you don't have to do it by hand.  "reauth" comes to 
>mind.  also, I recall something from umich called "longrun".
>
>This of course *requires* either a hardcoded password in a
>reauthentication script or some other file-based method of obtaining
>the tokens (such as a kerberos srvtab/keytab).  

One additional thing to consider ... a ticket which never expires is
equivalant to a hardcoded password/Kerberos keytab, so it's not like
a never-expiring ticket gains you much in the way of security ...

--Ken