Viewing/printing tex documents

Mike Friedman mikef at ack.Berkeley.EDU
Tue Mar 29 01:41:27 EST 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Fri, 25 Mar 2005 at 20:40 (-0500), Sam Hartman wrote:

> Hi.  The really bad news is the api docs in doc/api are sufficiently out
> of date as to be useless for most purposes.  I think they might be
> useful if someone wanted a starting point for an API document although
> even that is questionable.

Sam,

Actually, I still find the docs that I do have (a version from several
releases back) quite useful.  Because they're sometimes easier as a
reference than the source code, as long as I'm not doing anything terribly
complicated.

But this brings me to a very specific question, that even the source code
is not answering for me (I'm probably overlooking something obvious):

I'd like to use krb5_mk_req_extended, instead of krb5_mk_req, to get
service credentials as the second part of a proxy authentication. With
krb5_mk_req, I can supply the service and host names as arguments.  But
krb5_mk_req_extended doesn't seem to have a 'host' or 'service' argument.
So, how do I specify the service principal for which I want to issue a TGS
request?

The reason I want to use mk_req_extended is that it will allow me to take
my input directly from a creds structure (received from an AS REQ), rather
than having to first store the initial credentials in a cache file.

So, how do I specify the service principal with krb5_mk_req_extended?

Thanks.

Mike

_____________________________________________________________________
Mike Friedman                   System and Network Security
mikef at ack.Berkeley.EDU          2484 Shattuck Avenue
1-510-642-1410                  University of California at Berkeley
http://ack.Berkeley.EDU/~mikef  http://security.berkeley.edu
_____________________________________________________________________

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8

iQA/AwUBQkj4nq0bf1iNr4mCEQJbnQCg5jKdGUq5gkkQax+Oo/l/HO+atJsAn0Hh
P+ApuOFJnvGY1ZUFODVO92s3
=O7lO
-----END PGP SIGNATURE-----


More information about the Kerberos mailing list