keytab vs database

Lara Adianto m1r4cle_26 at yahoo.com
Tue Aug 17 05:27:37 EDT 2004


Hi,

I have a basic question about kerberos concept.
As I browsed through MIT source code to better
understand how kerberos works, I noticed that in
processing the tgs request, the ticket is always
decrypted using server's key retrieved from keytab. If
the server is a TGS service (krbtgt) or
kadmin/changepw which are part of a KDC (am I right to
say this ?), is it okay to retrieve the key from the
database instead of from the keytab ? 

Does a KDC need to maintain a keytab actually ?

thank you,
lara

=====
------------------------------------------------------------------------------------ 
La vie, voyez-vous, ca n'est jamais si bon ni si mauvais qu'on croit
                                                                        - Guy de Maupassant -
------------------------------------------------------------------------------------


		
__________________________________
Do you Yahoo!?
Y! Messenger - Communicate in real time. Download now. 
http://messenger.yahoo.com


More information about the Kerberos mailing list