[EMAIL PROTECTED] (Paul Sangster) writes: > If we were to push the ccache into a separate daemon (like the LSA > on Windows) then it would seem that the clients still need a way > to prove to this daemon that they are authorized to gain access > to the ccache entry. This would likely still involve the daemon > learning the uid of the requesting process to know which ccache > entry to allow access.
I've got a really dumb question: why aren't tickets treated as public information? They're clearly snoopable on the wire, so confidentiality shouldn't be assumed. To my mind tickets are analogous to x.509 certs which are, essentially, public information; the private/secret key is what's important to keep secret. -- Michael Thomas ([EMAIL PROTECTED] http://www.mtcc.com/~mike/) Multi-mode fiber with an optical splitter | B G P sessions conFIGGED not to litter | My Fav'rite 'Net Things Reverting from A T M back to I P | by kc claffy, CAIDA These are a few of my fav'rite `Net things |
