[krbdev.mit.edu #3322]

Tom Yu via RT rt-comment at krbdev.mit.edu
Tue Jan 3 16:29:03 EST 2006

Previous message: [krbdev.mit.edu #3320] krb5-config lists libraries in wrong order (krb5-support.in bug)
Next message: [krbdev.mit.edu #3323] cannot discover enc type key length
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

krb5_get_cred_via_tkt() explicitly checks that the requested server
principal name is identical to the returned server principal name.  This
prevents the cross-realm KDC referral logic in get_cred_from_kdc() from
working.  There should be a way to relax this check, perhaps
substituting a check that the cleartext and encrypted server principal
names are identical.

Previous message: [krbdev.mit.edu #3320] krb5-config lists libraries in wrong order (krb5-support.in bug)
Next message: [krbdev.mit.edu #3323] cannot discover enc type key length
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the krb5-bugs mailing list