keytab vs database
Lara Adianto
m1r4cle_26 at yahoo.com
Tue Aug 17 05:27:37 EDT 2004
Hi,
I have a basic question about kerberos concept.
As I browsed through MIT source code to better
understand how kerberos works, I noticed that in
processing the tgs request, the ticket is always
decrypted using server's key retrieved from keytab. If
the server is a TGS service (krbtgt) or
kadmin/changepw which are part of a KDC (am I right to
say this ?), is it okay to retrieve the key from the
database instead of from the keytab ?
Does a KDC need to maintain a keytab actually ?
thank you,
lara
=====
------------------------------------------------------------------------------------
La vie, voyez-vous, ca n'est jamais si bon ni si mauvais qu'on croit
- Guy de Maupassant -
------------------------------------------------------------------------------------
__________________________________
Do you Yahoo!?
Y! Messenger - Communicate in real time. Download now.
http://messenger.yahoo.com
More information about the Kerberos
mailing list