LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

SSH: passwords or keys?

SSH: passwords or keys?

Posted Jan 14, 2010 22:53 UTC (Thu) by foom (subscriber, #14868)
In reply to: SSH: passwords or keys? by paulj
Parent article: SSH: passwords or keys?

> The former is really easy. The user can authenticate with multiple kerberos
> realms quite easily, just by specifying different ticket caches when using kinit
> (I open a new session and set KRB5CCNAME).

You call that *easy*??

However, IIRC from last I used kerberos, you can actually kinit to multiple realms just fine without
setting random environment variables.

(Log in to post comments)

SSH: passwords or keys?

Posted Jan 15, 2010 12:27 UTC (Fri) by paulj (subscriber, #341) [Link]

It's not random, it's documented in the kinit manual page.

You need an environment variable really, otherwise every krb5-or-GSS using
client you run needs to have an explicit option (argument, conf file, and/or in the
UI) to specify the ticket cache.

It's not as transparent as using having SSH keys though, unfortunately.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds