Kerberos Passwords
Jeffrey Hutzelman
jhutz at cmu.edu
Wed Jul 21 17:07:49 EDT 2004
On Wednesday, July 21, 2004 16:37:59 -0400 Tom Yu <tlyu at mit.edu> wrote:
>>>>>> "Troy" == Otis, Troy <troy.otis at ca.unisys.com> writes:
>
> Troy> I have root and the kerberos master key on the server but have
> Troy> no idea how to decrypt the user passwords.
>
> Passwords are not stored on the Kerberos server; only keys derived
> from passwords are stored in the Kerberos database.
... and this derivation performed using a cryptographic hash function, such
that it is impossible to recover the original password from the keys stored
in the Kerberos database
More information about the Kerberos
mailing list