From owner-freebsd-current  Sat Feb 10 22:43:11 1996
Return-Path: owner-current
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id WAA15924
          for current-outgoing; Sat, 10 Feb 1996 22:43:11 -0800 (PST)
Received: from grumble.grondar.za (root@grumble.grondar.za [196.7.18.130])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id WAA15919
          for <current@FreeBSD.org>; Sat, 10 Feb 1996 22:43:06 -0800 (PST)
Received: from localhost (mark@localhost [127.0.0.1]) by grumble.grondar.za (8.7.3/8.7.3) with SMTP id IAA01915; Sun, 11 Feb 1996 08:42:26 +0200 (SAT)
Message-Id: <199602110642.IAA01915@grumble.grondar.za>
X-Authentication-Warning: grumble.grondar.za: Host mark@localhost [127.0.0.1] didn't use HELO protocol
To: Ollivier Robert <roberto@keltia.freenix.fr>
cc: current@FreeBSD.org
Subject: Re: Kerberos @ freebsd.org? 
Date: Sun, 11 Feb 1996 08:42:25 +0200
From: Mark Murray <mark@grondar.za>
Sender: owner-current@FreeBSD.org
Precedence: bulk

Ollivier Robert wrote:
> The problem I have with Kerberos is that it does not --  to my knowledge --
> encrypt everything  from a telnet session.  So trafic from any  X11 program
> you start on the other side will not be encrypted.

Not true. the -x switch turns on encryption.

> SSH does it _automatically_.  When you think about  it, if you were looking
> for a reason to use it over Kerberos, you just got it.

Sure  - with secure telnet you have to _ask_ for encryption. Its
not difficcult to put into appropriate startup files.

M
--
Mark Murray
46 Harvey Rd, Claremont, Cape Town 7700, South Africa
+27 21 61-3768 GMT+0200
Finger mark@grondar.za for PGP key