Re: KDC Hardware

2006-01-10 Thread Turbo Fredriksson
Quoting Jeffrey Hutzelman [EMAIL PROTECTED]: On Saturday, January 07, 2006 11:38:47 AM +0100 Turbo Fredriksson [EMAIL PROTECTED] wrote: Security? Nah, both need _extra ordinary security_ so it's easier to safegard ONE machine than two (* nr of slaves of course :). On the contrary,

Re: KDC Hardware

2006-01-09 Thread Turbo Fredriksson
Quoting Nicolas Williams [EMAIL PROTECTED]: On Sun, Jan 08, 2006 at 01:04:08PM +0100, Turbo Fredriksson wrote: The LDAP server is nowhere NEAR as important. If they crack that, all they'll get is ... what, nothing basically? Depends on who's relying on the LDAP server and for what. If

Re: KDC Hardware

2006-01-09 Thread Jeffrey Hutzelman
On Saturday, January 07, 2006 11:38:47 AM +0100 Turbo Fredriksson [EMAIL PROTECTED] wrote: Security? Nah, both need _extra ordinary security_ so it's easier to safegard ONE machine than two (* nr of slaves of course :). On the contrary, depending on what you are using your LDAP directory

Re: KDC Hardware

2006-01-08 Thread Turbo Fredriksson
Quoting Amir Saad [EMAIL PROTECTED]: actually, i was thinking of two separate machines one for the KDC and the other for the OpenLDAP, i read an article that suggests the separation to avoid to secure the KDC. To avoid securing the KDC!?!? Sorry, but whoever wrote that must be drunk (or know

RE: KDC Hardware

2006-01-08 Thread Amir Saad
so sorry i didn't mean that, i mean to secure not to avoid to secure (so sorry!) From: [EMAIL PROTECTED] on behalf of Turbo Fredriksson Sent: Sun 1/8/2006 2:04 PM To: kerberos@mit.edu Subject: Re: KDC Hardware Quoting Amir Saad [EMAIL PROTECTED]: actually

Re: KDC Hardware

2006-01-08 Thread Turbo Fredriksson
Quoting Amir Saad [EMAIL PROTECTED]: so sorry i didn't mean that, i mean to secure not to avoid to secure (so sorry!) Ah, that explains a lot :) But you should keep the LDAP server (just as) safe as well. As I said in the mail, it's not nearly as important as the KDC, but it is important

Re: KDC Hardware

2006-01-08 Thread Nicolas Williams
On Sun, Jan 08, 2006 at 01:04:08PM +0100, Turbo Fredriksson wrote: The LDAP server is nowhere NEAR as important. If they crack that, all they'll get is ... what, nothing basically? Depends on who's relying on the LDAP server and for what. If important systems are using LDAP for user

Re: KDC Hardware

2006-01-07 Thread Turbo Fredriksson
Quoting Jeffrey Hutzelman [EMAIL PROTECTED]: On Friday, January 06, 2006 12:37:51 PM +0100 Turbo Fredriksson [EMAIL PROTECTED] wrote: Quoting Jeffrey Hutzelman [EMAIL PROTECTED]: On Thursday, January 05, 2006 10:03:44 AM +0200 Amir Saad [EMAIL PROTECTED] wrote: i use Fedora 4, OpenLDAP

RE: KDC Hardware

2006-01-07 Thread Amir Saad
services and i think this reduces the hacking chances. please tell me if this is not true.. thanks Amir Saad Software Engineer From: [EMAIL PROTECTED] on behalf of Turbo Fredriksson Sent: Sat 1/7/2006 12:38 PM To: kerberos@mit.edu Subject: Re: KDC Hardware Quoting

Re: KDC Hardware

2006-01-06 Thread Turbo Fredriksson
Quoting Jeffrey Hutzelman [EMAIL PROTECTED]: On Thursday, January 05, 2006 10:03:44 AM +0200 Amir Saad [EMAIL PROTECTED] wrote: i use Fedora 4, OpenLDAP and Kerberos instead of NIS what is the suitable hardware configuration for the KDC to support a network with 200 machines? thanks

Re: KDC Hardware

2006-01-06 Thread Jeffrey Hutzelman
On Friday, January 06, 2006 12:37:51 PM +0100 Turbo Fredriksson [EMAIL PROTECTED] wrote: Quoting Jeffrey Hutzelman [EMAIL PROTECTED]: On Thursday, January 05, 2006 10:03:44 AM +0200 Amir Saad [EMAIL PROTECTED] wrote: i use Fedora 4, OpenLDAP and Kerberos instead of NIS what is the

KDC Hardware

2006-01-05 Thread Amir Saad
i use Fedora 4, OpenLDAP and Kerberos instead of NIS what is the suitable hardware configuration for the KDC to support a network with 200 machines? thanks Amir Saad Software Engineer Kerberos mailing list Kerberos@mit.edu

Re: KDC Hardware

2006-01-05 Thread Garrett Wollman
In article [EMAIL PROTECTED], Amir Saad [EMAIL PROTECTED] wrote: i use Fedora 4, OpenLDAP and Kerberos instead of NIS what is the suitable hardware configuration for the KDC to support a network with 200 machines? You can't buy a server that small any more. -GAWollman -- Garrett A. Wollman

Re: KDC Hardware

2006-01-05 Thread Jeffrey Altman
Garrett Wollman wrote: In article [EMAIL PROTECTED], Amir Saad [EMAIL PROTECTED] wrote: i use Fedora 4, OpenLDAP and Kerberos instead of NIS what is the suitable hardware configuration for the KDC to support a network with 200 machines? You can't buy a server that small any more.

Re: KDC Hardware

2006-01-05 Thread Jeffrey Hutzelman
On Thursday, January 05, 2006 06:53:27 PM + Garrett Wollman [EMAIL PROTECTED] wrote: In article [EMAIL PROTECTED], Amir Saad [EMAIL PROTECTED] wrote: i use Fedora 4, OpenLDAP and Kerberos instead of NIS what is the suitable hardware configuration for the KDC to support a network with