%% Mark Roach <[EMAIL PROTECTED]> writes: mr> Yup. Install a key-sniffer, wait for the victim to unwittingly mr> type his password.
>> Why would I type my password on your box? I would never do that, >> that's not how Kerberos works. mr> Yes it is. It is not how something like RSA securids, or mr> CryptoCards work, but kerberos does not automatically mean one of mr> those will be in use. Kerberos is a network authentication protocol designed around secret key cryptography. No one would go to the trouble of implementing Kerberos, just to continue to type passwords on all the remote boxes! mr> it doesn't send the password over the network, it does require the mr> password to be typed. Yes, on the local system. mr> (I think you missed the original question. Having root on _your_ mr> box is the given that we are assuming.) I guess I must have: this requirement is obviously silly. Unless you go into something like the Hurd, or maybe NSA Linux could do this. mr> Hmm, I don't even give my users the "administrator" password on their mr> windows machines. I'm certainly not giving them root. ;-) That may work if your users are not technical, but our users are programmers and hardware designers. They expect to be able to have some control over their own systems. They sure as heck aren't going to call a help line just so they can change their display resolution or restart some system service that seems to be hung. -- ------------------------------------------------------------------------------- Paul D. Smith <[EMAIL PROTECTED]> HASMAT--HA Software Mthds & Tools "Please remain calm...I may be mad, but I am a professional." --Mad Scientist ------------------------------------------------------------------------------- These are my opinions---Nortel Networks takes no responsibility for them. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
