Excerpts from Firewalls: 27-Oct-93 Re: System Security "Perry E.
> What are you talking about? You have to get kerberos tickets on the
> host that is accessing AFS if you are going to get files. If you
> didn't need to do this the system would not be secure, since anyone
> can forge IP packets.
(a copy of my last posting was sent twice, by mistake).
You can run a cache manager remotely, using the rx protocol. The remote
machine talks to the AFS servers with authentication tokens stored in
*its* kernel. This is all transparent to you, the client. Your machine
sees and accesses the AFS filespace, as if you were running the cache
manager locally. But your tokens and cache information are actually
controlled by a remote machine.