[OpenAFS] Tokens that do not expire
Ken Hornstein
kenh@cmf.nrl.navy.mil
Fri, 18 Oct 2002 12:13:02 -0400
>and there are scripts out there that will reauthenticate periodically
>so that you don't have to do it by hand. "reauth" comes to
>mind. also, I recall something from umich called "longrun".
>
>This of course *requires* either a hardcoded password in a
>reauthentication script or some other file-based method of obtaining
>the tokens (such as a kerberos srvtab/keytab).
One additional thing to consider ... a ticket which never expires is
equivalant to a hardcoded password/Kerberos keytab, so it's not like
a never-expiring ticket gains you much in the way of security ...
--Ken