nanog mailing list archives

Re: Security Practices question

From: alex () yuriev com
Date: Thu, 3 Oct 2002 13:11:16 -0400 (EDT)


You still haven't given me a single example of what these "problems"
are. Just hand-waving and talk about the "right" way is.


It is rather simple and had been addressed lots of times. I really fail to
understand why people do keep re-inventing the wheel.

Give your admins crypto cards. Make sure that crypto-card service talks
GSS-API.
Have a GSS-API service provider
Configure all your systems to use GSSAPI interface.

So, why are we re-inventing the wheel again?

Alex

P.S. Dont claim that crypto cards are expensive. If you have 40000 Unix
machines, you can AFFORD to give everyone a crypto card.

Current thread:

Re: Security Practices question, (continued)
- - - Re: Security Practices question Michael Lamoureux (Oct 02)
    - Re: Security Practices question just me (Oct 03)
    - Message not available
    - Re: Security Practices question Barb Dijker (Oct 03)
    - Re: Security Practices question Jason Slagle (Oct 02)
    - Re: Security Practices question Joel Baker (Oct 02)
    - Re: Security Practices question Scott Walker (Oct 02)
    - Re: Security Practices question Valdis . Kletnieks (Oct 03)
    - Re: Security Practices question Scott Francis (Oct 03)
    - Re: Security Practices question just me (Oct 03)
    - Re: Security Practices question Scott Francis (Oct 03)
    - Re: Security Practices question alex (Oct 03)
    - Re: Security Practices question William Waites (Oct 03)
    - Message not available
    - Re: Security Practices question Barb Dijker (Oct 02)
    - Message not available
    - Re: Security Practices question Barb Dijker (Oct 03)