[krbdev.mit.edu #7571] SVN Commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Tue Feb 19 16:31:56 EST 2013
Allow multi-hop SAM-2 exchanges
Prior to 1.11, it was possible to do SAM-2 preauth exchanges with
multiple hops by sending repeated preauth-required errors with
different challenges (which is not the way multi-hop exchanges are
described in RFC 6113, but it can still work). This stopped working
when SAM-2 was converted to a built-in module because of the use_count
field. Disable the use count for SAM-2 specifically.
https://github.com/krb5/krb5/commit/370572d682c569c21a7d6a94080237e131b38664
Author: Greg Hudson <ghudson at mit.edu>
Committer: Tom Yu <tlyu at mit.edu>
Commit: 370572d682c569c21a7d6a94080237e131b38664
Branch: krb5-1.11
src/lib/krb5/krb/preauth2.c | 3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)
More information about the krb5-bugs
mailing list