Re: Going LDAP #2

To: tls%rek.tjls.com@localhost
Subject: Re: Going LDAP #2
From: Anders Magnusson <ragge%ludd.ltu.se@localhost>
Date: Wed, 18 Jun 2008 20:54:37 +0200

Thor Lancelot Simon wrote:
> On Mon, May 26, 2008 at 08:01:54PM +0200, Anders Magnusson wrote:
>   
>>         xxinit -c (client)
>>                 - Asks about the master machine and root password for it.
>>                   This will get the configuration for the domain out
>>                   of ldap and fetch a machine key.
>>     
>
> What is the "it" here?  If "it" means the master machine, so the LDAP
> server and KDC's root password would have to be entered into each client
> when that client is initialized, I really, *really* don't like this.
>   
This should be read "principal that can extract a host keytab" for the
client.
Which may or may not be root, depending of how the system is configured.

-- Ragge

Follow-Ups:
- Re: Going LDAP #2
  - From: Erik Berls

References:
- Re: Going LDAP #2
  - From: Thor Lancelot Simon

Prev by Date: Uma frase e uma sugestao
Next by Date: passwd check from unpriliged programs (pkgsrc/pam-pwauth_suid)
Previous by Thread: Re: Going LDAP #2
Next by Thread: Re: Going LDAP #2
Indexes:

Home | Main Index | Thread Index | Old Index