From owner-freebsd-security Thu Mar 25 4:19: 4 1999 Delivered-To: freebsd-security@freebsd.org Received: from axl.noc.iafrica.com (axl.noc.iafrica.com [196.31.1.175]) by hub.freebsd.org (Postfix) with ESMTP id 114B614CE4 for ; Thu, 25 Mar 1999 04:18:52 -0800 (PST) (envelope-from sheldonh@axl.noc.iafrica.com) Received: from sheldonh (helo=axl.noc.iafrica.com) by axl.noc.iafrica.com with local-esmtp (Exim 2.12 #1) id 10Q92j-000064-00; Thu, 25 Mar 1999 14:15:25 +0200 From: Sheldon Hearn To: Mike Thompson Cc: Matthew Dillon , Gary Gaskell , freebsd-security@FreeBSD.ORG Subject: Re: Kerberos vs SSH In-reply-to: Your message of "Wed, 24 Mar 1999 23:41:01 PST." <4.1.19990324233231.00a02e40@mail.dnai.com> Date: Thu, 25 Mar 1999 14:15:25 +0200 Message-ID: <375.922364125@axl.noc.iafrica.com> Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 24 Mar 1999 23:41:01 PST, Mike Thompson wrote: > Are you refering to SSH v1 or SSH v2, or do both compile > with Kerberos in the manner you describe? Why are you so interested in ssh2? It's a totally different piece of software from a different vendor. Are you sure it does something that you need done, and which ssh1 doesn't do just fine? > I am currently looking into what the licensing costs would be > for us to license SSH v2 for our servers. Does BEST.COM pay > to license SSH v1 or SSH v2 for internal use? There are no licensing costs involved in using ssh1. > I'll investigate Kerberos V in the ports. By using Kerberos I assume > it gives you the advantage of configuring all ssh authentication and > passwords on the Kerberos server? Not exactly. All your Kerberos passwords are on the Kerberos server. However, sshd configuration still needs to be host-specific. Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message