Manualshelf

Datasheet

ManualsBrandsNovell ManualsSoftware00662644465449-OEM
21222324252627282930
“main” (Installation and Administration) 2004/6/25 13:29 page xxiv #24
i
i
i
i
i
i
i
i
26.5.2 How Kerberos Works . . . . . . . . . . . . . . . . . . 659
26.5.3 Users’ View of Kerberos . . . . . . . . . . . . . . . . . 662
26.5.4 For More Information . . . . . . . . . . . . . . . . . . 663
26.6 Installing and Administering Kerberos . . . . . . . . . . . . . 664
26.6.1 Choosing the Kerberos Realms . . . . . . . . . . . . . 664
26.6.2 Setting up the KDC Hardware . . . . . . . . . . . . . 665
26.6.3 Clock Synchronization . . . . . . . . . . . . . . . . . . 666
26.6.4 Log Configuration . . . . . . . . . . . . . . . . . . . . 666
26.6.5 Installing the KDC . . . . . . . . . . . . . . . . . . . . 667
26.6.6 Configuring Kerberos Clients . . . . . . . . . . . . . . 669
26.6.7 Remote Kerberos Administration . . . . . . . . . . . . 673
26.6.8 Creating Kerberos Host Principals . . . . . . . . . . . 674
26.6.9 Enabling PAM Support for Kerberos . . . . . . . . . . 676
26.6.10 Configuring SSH for Kerberos Authentication . . . . 676
26.6.11 Using LDAP and Kerberos . . . . . . . . . . . . . . . 677
26.7 Security and Confidentiality . . . . . . . . . . . . . . . . . . . 680
26.7.1 Local Security and Network Security . . . . . . . . . 681
26.7.2 Some General Security Tips and Tricks . . . . . . . . 689
26.7.3 Using the Central Security Reporting Address . . . . 692
IV Administration 693
27 Access Control Lists in Linux 695
27.1 Advantages of ACLs . . . . . . . . . . . . . . . . . . . . . . . 696
27.2 Definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 697
27.3 Handling ACLs . . . . . . . . . . . . . . . . . . . . . . . . . . 697
27.3.1 Structure of ACL Entries . . . . . . . . . . . . . . . . . 698
27.3.2 ACL Entries and File Mode Permission Bits . . . . . . 699
27.3.3 A Directory with Access ACL . . . . . . . . . . . . . . 700
27.3.4 A Directory with a Default ACL . . . . . . . . . . . . 703
27.3.5 The ACL Check Algorithm . . . . . . . . . . . . . . . 706
27.4 Support by Applications . . . . . . . . . . . . . . . . . . . . . 706
xxiv
Contents