OpenAFS logo
AFS & Kerberos Best Practices Workshop
Stanford, California
May 7-11, 2007
List of Participants Agenda


Wednesday 9 May

Speaker Title
Troy Benjegerdes, DOE Ames Lab Deploying hardened internet-accessible systems with read-only AFS volumes
We describe extending previous work done based on using AFS as the root filesystem for compute cluster nodes to deploying secure, hardened internet accessible systems. This mechanism provides integrated end-to-end secure authentication via kerberos, with the potential for additional logging and intrusion detection at the AFS fileserver as well as by and IDS system between the internet-accessible host and the AFS servers providing its root filesystem.