[NoCat] Θέμα: Re: Θέμα: Θέμα: Re: NoCatAuth for authentication purposes only

[Steve Platt]

> ...
> disencourage the NoCatAuthServer being on the same machine as the gateway
> why is that?

I think this is a question of security.

I think that the gateway machine is very exposed/vulnerable but that the 
authentication server can be put behind a firewall and is thus much less 
vulnerable to attack so it's a safer place to access authentication 
information.

The two parts communicate through the firewall using encrypted (HTTPS) traffic 
and PGP-signed messages ...

Another reason to have the two parts on separate systems is that it's less 
confusing for you as the adminstrator :-)

Steve