@ character in username

Russ Allbery rra at stanford.edu
Tue May 15 15:04:28 EDT 2007

Booker C Bense <bbense at stanford.edu> writes:

> Kerberos code has changed a lot since 1993, but I suspect there are
> still bugs lurking in dealing with these kinds of things. If there is
> anything you can do to avoid using these kinds of principals I would
> highly recommend doing so.

Hm, we're likely to start deploying users of this type in a separate realm
for our guest authentication project.  Does anyone have more recent
experience specifically with the K5 code?  It looked to me from reading
the code that it should work fine provided that the @ was always escaped
whenever it was entered in text form.

Russ Allbery (rra at stanford.edu)             <http://www.eyrie.org/~eagle/>

More information about the Kerberos mailing list