Linux Journal

Centralized Authentication with Kerberos 5, Part I

Account administration in a distributed UNIX/Linux environment can become complicated and messy if done by hand. Large sites use special tools to deal with this problem. In this article, I describe ...

Microsoft reminder of next phase of Kerberos RC4 hardening

Microsoft wants to get rid of insecure RC4 encryption. The company points out that the next phase starts in April.
CSOonline

Don’t count on Kerberos to thwart pass-the-hash attacks

Several readers responded to my previous post on pass-the-hash attacks, asking if Kerberos authentication versus LANManager, NTLM, or NTLMv2 was an effective defense. It’s a good question, one that I ...
TechRepublic

Understanding and selecting authentication methods

If you are serious about computer/network security, then you must have a solid understanding of authentication methods. Debra Littlejohn Shinder takes a moment to lay out the role authentication plays ...