[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: alternative to user-to-user Kerberos in KINK

To: Derek Atkins <warlord@xxxxxxx>
Subject: Re: alternative to user-to-user Kerberos in KINK
From: Bill Sommerfeld <sommerfeld@xxxxxxxxxxxx>
Date: Mon, 20 Nov 2000 18:00:51 -0500
Cc: sommerfeld@xxxxxxxxxxxx, Jan Vilhuber <vilhuber@xxxxxxxxx>, "Medvinsky, Sasha (SD-EX)" <SMedvinsky@xxxxxx>, "'Michael Thomas'" <mat@xxxxxxxxx>, "'ietf-kink@xxxxxxxx'" <ietf-kink@xxxxxxxx>
In-reply-to: Your message of "20 Nov 2000 17:57:06 EST." <>
List-archive: <http://www.vpnc.org/ietf-kink/mail-archive/>
List-id: <ietf-kink.vpnc.org>
List-unsubscribe: <mailto:ietf-kink-request@vpnc.org?body=unsubscribe>
Reply-to: sommerfeld@xxxxxxxxxxxx
Sender: owner-ietf-kink@xxxxxxxxxxxxx

> It works for road-warrior VPNs :)

that's nice.

> In other cases, you probably aren't authenticating users to users, or
> hosts to users, but rather hosts to hosts.  

This is an unwarranted assumption, and the ipsec implementation i'm
working on doesn't make that assumption.

> So I don't think it matters there, either.  

I think it does.

					- Bill

Follow-Ups:
- Re: alternative to user-to-user Kerberos in KINK
  - From: Derek Atkins

References:
- Re: alternative to user-to-user Kerberos in KINK
  - From: Derek Atkins

Prev by Date: Re: alternative to user-to-user Kerberos in KINK
Next by Date: Re: alternative to user-to-user Kerberos in KINK
Previous by thread: Re: alternative to user-to-user Kerberos in KINK
Next by thread: Re: alternative to user-to-user Kerberos in KINK
Index(es):
- Date
- Thread