Subject: [netatalk-admins] Need very technical info/pointers/etc on AFS/KRB4 implementations
From: Mario L. Gonzales (mario@oit.duke.edu)
Date: Thu Aug 07 1997 - 16:49:07 EDT
Hello Folks,
I am trying to find some resources to help me understand how the
Kerberos and AFS support are implemented in netatalk.
I am very concerned about security and the possible violation of the
Kerberos/AFS security models (ie trusting a non-trusted source,
clear text passwords, unauthenticated acccess to afs file systems,
key theft, ticket theft, etc).
Does anyone have any information on what Security model netatalk uses?
What steps are taken to not allow unauthenticated access to afs data?
Is netatalk a proxy for the client to talk to the afs servers?
Does netatalk authenticate for you and how?
I guess I am paranoid and cannot seem to find any information
via the FAQ's. Also went so far as to AltaVista Search for tidbits
and could not find anything.
Thanks again,
Mario
---------------------------------------------------------------------------
| Systems Administration Group, O.I.T.
phone://919.660.7037/ | Duke University, 412 North Building
fax://919.660.7029/ | Durham, NC 27708
mailto:mario@oit.duke.edu | http://www.oit.duke.edu/~mario/
---------------------------------------------------------------------------
FOR MY PGP PUBLIC KEY: "finger -m mario@acpub.duke.edu | pgp -fka"
This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:26:02 EST