[krbdev.mit.edu #2110] MIT KDC fails to handle unknown padata
Sam Hartman via RT
rt-comment at krbdev.mit.edu
Wed Feb 11 11:30:21 EST 2004
>>>>> "Douglas" == Douglas E Engert <deengert at anl.gov> writes:
Douglas> Sam Hartman wrote:
>> Hi, Doug. I applied your patches and they seemed to work.
>>
>> However I was unable to reproduce the error you got against a
>> 1.2.x or 1.3.x KDC. I was able to reproduce this problem
>> against a 1.0.7 KDC.
Douglas> OK. Since I can't get Microsoft code does to send a
Douglas> PA-PAC-REQUEST to a non-MS KDC and the code patch to let
Douglas> MIT kinit send a PA-PAC-REQUEST will not be needed once
Douglas> Todd gets the hotfix for the AD finished it is very
Douglas> unlikely the problem will show up.
Consider how extensions works. If this problem actually happens it
will be a critical problem for MIT trying to implement extensions.
More information about the krb5-bugs
mailing list