| 1 |
On Saturday 28 January 2006 10:29am, Chris PeBenito wrote: |
| 2 |
> On Wed, 2006-01-25 at 12:56 +0100, Mivz wrote: |
| 3 |
> > I would like some comment on the policy, what can I do better. |
| 4 |
> > Is this a odd or nonstandard daemon configuration? |
| 5 |
|
| 6 |
No; it is not odd nor non-standard in any way. |
| 7 |
|
| 8 |
> > , or could it be |
| 9 |
> > integrated in the portage tree? |
| 10 |
> > I would be interested in maintaining this policy my self. |
| 11 |
> |
| 12 |
> If heimdal is supposed to work with LDAP, |
| 13 |
|
| 14 |
Since Kerberos *only* provides authentication and can not provide user |
| 15 |
information (like the list of groups a user belongs to, the home directory or |
| 16 |
shell, etc.) then another service which does must be used in conjunction with |
| 17 |
Kerberos. Almost always (these days), that will be LDAP. This is because |
| 18 |
LDAP gives the best way to securely manage & provide all this information and |
| 19 |
can be kerberized itself. |
| 20 |
|
| 21 |
[snip] |
| 22 |
-- |
| 23 |
Lamont R. Peterson <lrp@××××××××.com> |
| 24 |
[ http://www.xmission.com/~lrp/ ] |
Archives