[NTLUG:Discuss] Kerberos and Linux
Chris Cox
cjcox at acm.org
Sun Feb 5 13:54:35 CST 2006
Leroy Tennison wrote:
...
> Thanks for mentioning Fedora Directory Services, I didn't know it
> existed and will at least have to look at it. What you mentioned
> (Samba+LDAP+Kerberos) is exactly the complexity I'm trying to avoid,
> unfortunately that may not be possible and I consider that an area where
> the Open Source "world" needs to improve if it is going to be considered
> for anything other than small LANs.
>
> I had heard some bad things about Kerberos security but don't really
> know what they are, can you provide a high-level overview? Thanks.
There's nothing all that bad about Kerberos security.
On a mixed network (Windows + Unix/Linux) it's pretty easy to setup
Linux hosts as Domain Member Servers and allow them to autheticate to
the Windows password database (doesn't require running a samba server).
I will be demonstrating such a setup at the NTLUG Linux Fair in
March.
More information about the Discuss
mailing list