Transited Encoded field
Sam Hartman
hartmans at MIT.EDU
Wed Dec 10 13:23:53 EST 2003
>>>>> "Gustavo" == Gustavo V G C Rios <gustavo.rios at terra.com.br> writes:
Gustavo> Hi folks! i wonder if in a hierarchically organized
Gustavo> realm path, the transited encoding field could be omited
Gustavo> (provide no node in the realm tree would be bypassed)?
Gustavo> Would this violate the protocol?
Yes doing so would violate the protocol.
Gustavo> In RFC1510 it is said that a KDC may not to include a
Gustavo> realm in the transited encoded field, i.e., a third party
Gustavo> realm! Would not this be a standard violation?
You seem to be doing enough work with Kerberos that you are really better off taking the following steps:
1) subscribing to and reading the IETF working group list where
protocol discussions take place.
2) Reading draft-ietf-krb-wg-kerberos-clarifications instead of RFC
1510.
Start at http://www.ietf.org/, look for working groups and then look
for Kerberos. This will include mailing list instructions as well as
pointers to the Kerberos drafts.
More information about the Kerberos
mailing list