[SATLUG] RE: kerberos
David Kowis
dkowis at shlrm.org
Fri Dec 1 15:13:18 CST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Bruce Dubbs wrote:
<snip>
> Another way is to store the actual password on the server and send
> something like a hash of a timestamp plus the password. The
> authentication server then tests the timestamp for reasonableness (say
> within a second or two) and calculates the hash from the timestamp and
> the saved password. If that matches the transmitted timestamp, access
> is allowed.
>
One would note that's the same thing kerberos does :) It just also adds
a single sign on ticket thingy.
David
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)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=d9dX
-----END PGP SIGNATURE-----
More information about the SATLUG
mailing list