> There is a desire to allow credentials to be forwarded after the > connection is established. In this situation you really have no > choice but to tamper with the credentials cache as root. I can think of a number of ways of doing this which avoid the need to tamper with the credentials cache as root. (get telnetd to setuid to the authenticated user; do all the cred cache maintainance in a forked copy of login; ...) - Bill
