[OpenAFS] Re: why kerberos only works in monolithic organizations
Derrick J Brashear
shadow@dementia.org
Fri, 30 Dec 2005 16:04:33 -0500 (EST)
So have you looked at pkcross or is this just a strawman?
Derrick
On Fri, 30 Dec 2005, Adam Megacz wrote:
> Example: the fact that the BERKELEY.EDU kdc admin had to add an entry
> to the kdc for my AFS server *just so that I could verify the
> identities of its users* is a technological anachronism. All that
> should have been necessary is for me to access a place where some
> "BERKELEY.EDU public key" is reliably advertised. Any requirement
> stronger than that is a needless burden.