* Tony Earnshaw (tonye@billy.demon.nl) [040729 22:20]:
Because this one chose Heimdal?
can someone please comment on the MIT vs Heimdal question? i hear Heimdal is able to distribute principals and keys over ldap.
We have a network with differnt services (imap, samba, soon AFS, ldap, terminal servers, ...) which would need own kerberos keys automatically.
Using Heimdal and ldap would solve our distribution problem. But people tell me that this idea is against the spirit of kerberos. (An alternative idea for MIT Kerberos would be ssh keys without passphrases for every server and automatic distribution over ssh.)