[krbdev.mit.edu #8465] git commit
Greg Hudson via RT
rt-comment at krbdev.mit.edu
Mon Jul 25 20:39:57 EDT 2016
Improve bad password inference in kinit
kinit currently outputs "Password incorrect" if it sees a
bad-integrity error code, which results if the KDC reply couldn't be
decrypted, or when encrypted timestamp preauth fails against an MIT
krb5 1.14 or earlier KDC. Expand this check to include general
preauth failures reported by the KDC, but only if a password was
prompted for.
https://github.com/krb5/krb5/commit/1a83ffad4d8e405ce696536c06d9bce1f8100595
Author: Greg Hudson <ghudson at mit.edu>
Commit: 1a83ffad4d8e405ce696536c06d9bce1f8100595
Branch: master
src/clients/kinit/kinit.c | 26 ++++++++++++++++++++------
1 files changed, 20 insertions(+), 6 deletions(-)
More information about the krb5-bugs
mailing list