On Sat, Nov 1, 2014 at 11:45 PM, Mark McCullough <[email protected]> wrote:
> I would be very cautious about putting your authentication framework for > your internal systems in a remote (i.e. cloud) service. That methodology > seems to be asking for trouble: security, stability, performance, you name > it. > > Before I would go that route, I'd ask yourself, what is your expectation > for availability for your authentication framework? I'm cynical of caching > as a be-all answer for all (okay, many) shops when it comes to > authorization and authentication. > > Could I be overly paranoid? Of course. But we are talking about a core > security framework for your network. A little extra paranoia may be > worthwhile. ...which is why I mentioned this as a hard thing to sell.... -- brandon s allbery kf8nh sine nomine associates [email protected] [email protected] unix, openafs, kerberos, infrastructure, xmonad http://sinenomine.net
_______________________________________________ Discuss mailing list [email protected] https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss This list provided by the League of Professional System Administrators http://lopsa.org/
