[Freeipa-users] IPA over the Internet - Security Implications
Michael Mercier
mmercier at gmail.com
Fri Aug 17 11:02:49 UTC 2012
Hi,
Let us assume just the two systems directly connected to the
internet. I am specifically interested in what the security
implications would be, not ways to get around them (e.g. point-to-
point tunnel). I have read that kerberos was designed for untrusted
networks, just how untrusted can they be?
Thanks,
Mike
On 16-Aug-12, at 9:43 PM, Steven Jones wrote:
> Hi,
>
> I would assume you could do a point to point tunnel between each and
> do the authentication via that.
>
>
> regards
>
> Steven Jones
>
> Technical Specialist - Linux RHCE
>
> Victoria University, Wellington, NZ
>
> 0064 4 463 6272
>
> ________________________________________
> From: freeipa-users-bounces at redhat.com [freeipa-users-bounces at redhat.com
> ] on behalf of Michael Mercier [mmercier at gmail.com]
> Sent: Friday, 17 August 2012 1:14 p.m.
> To: freeipa-users at redhat.com
> Subject: [Freeipa-users] IPA over the Internet - Security Implications
>
> Hello,
>
> I was wondering what the security implications would be setting up a
> server to be a freeipa client at one site, and have it join a freeipa
> system over the internet at another site.
>
> ipaclient (siteA) <-- internet --> ipaserver (siteB)
>
> Is there an IPA document that describes this situation?
>
> Thanks,
> Mike
>
>
>
>
>
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
>
>
More information about the Freeipa-users
mailing list