Path: utzoo!attcan!uunet!ncrlnk!ncr-sd!hp-sdd!hplabs!ucbvax!ANDREW.CMU.EDU!leong+
From: leong+@ANDREW.CMU.EDU (John Leong)
Newsgroups: comp.protocols.tcp-ip
Subject: Re: Ethernet spies.
Message-ID: <YXTr-Sy00ja9Q360U4@andrew.cmu.edu>
Date: 14 Nov 88 23:56:14 GMT
References: <7915@bloom-beacon.MIT.EDU>
Sender: usenet@ucbvax.BERKELEY.EDU
Organization: The Internet
Lines: 8

Kerberos works fine for appropriately designed network applications.
Unfortunately, a lot of system administrators still uses vanilla Telnet to
interact with servers even though the applications themselves use Kerberos.
Once that happens, highly previleged passwords can easily be picked off the
Ethernet (and easier still off AppleTalk).  Human procedural problems tend to
still be the weak link regardless of technology improvement.

Leong