[OpenAFS] Re: why kerberos only works in monolithic organizations

Derrick J Brashear shadow@dementia.org
Fri, 30 Dec 2005 16:04:33 -0500 (EST)

So have you looked at pkcross or is this just a strawman?

On Fri, 30 Dec 2005, Adam Megacz wrote:

> Example: the fact that the BERKELEY.EDU kdc admin had to add an entry
> to the kdc for my AFS server *just so that I could verify the
> identities of its users* is a technological anachronism.  All that
> should have been necessary is for me to access a place where some
> "BERKELEY.EDU public key" is reliably advertised.  Any requirement
> stronger than that is a needless burden.