NFS4 and remote access
Trond Myklebust
trond.myklebust at fys.uio.no
Wed Apr 18 16:03:15 EDT 2007
On Wed, 2007-04-18 at 20:45 +0100, Ian Grant wrote:
> Yes, we have had this working from within our own site, where we trust
> the machines we manage. I should have been more clear: I meant remote
> access from other institutions, cyber-cafe's etc. where we cannot
> necessarily trust anything beyond the ssh session. We don't want the
> user typing kinit and entering their kerberos key.
If you don't trust the keyboard that you are using to type with, then
you cannot enter _any_ passwords that could be reused. The only way to
deal with that would be use-once passwords (including for the ssh
session itself).
Cheers
Trond
More information about the NFSv4
mailing list