Path: utzoo!attcan!uunet!seismo!sundc!pitstop!sun!amdcad!ames!eos!labrea!decwrl!ucbvax!ATHENA.MIT.EDU!mar
From: mar@ATHENA.MIT.EDU
Newsgroups: comp.protocols.tcp-ip
Subject: Password transmission and encryption query
Message-ID: <8805121843.AA25506@TOTO.MIT.EDU>
Date: 12 May 88 18:43:19 GMT
References: <12397546524.36.VAF@Score.Stanford.EDU>
Sender: daemon@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 13

The kerberos authentication system can help solve this problem.  When
both hosts in a transaction are using kerberos, it is never necessary
to send passwords across the network.  For remote login, we have
already modified Berkeley Unix rlogin to use kerberos.  A kerberos
solution could be written for other operating systems as well.

The documents describing the protocol are available via anonymous FTP
from athena-dist.mit.edu (at 18.71.0.38).  The code is currently in
beta test (we've been using a version at MIT for over a year now), and
will be released at some point in the future.  If you cannot use FTP
or want more information, you may send a request to
info-kerberos@athena.mit.edu.
					-Mark Rosenstein