Douglas Otis <dotis(_at_)mail-abuse(_dot_)org> writes:
Changes required of SMTP to make use of Kerberos would be minimal. I
believe it would only require an SMTP-Auth extension to exchange
retained tickets for destination domains.
There aren't any changes at all required of SMTP to make use of Kerberos.
SMTP AUTH supports Kerberos right now, via SASL. So no protocol changes
are required for you to start testing such a system right now to see how
well it works.
Russ Allbery (rra(_at_)stanford(_dot_)edu)