Logging on with cached ticket
Nikolay Shopik
shopik at inblock.ru
Fri Jun 5 09:22:09 EDT 2009
On 05.06.2009 17:15, Simo Sorce wrote:
> Windows caches the NT hash of your password.
> That's how you get access w/o the KDC. Nothing to do with kerberos
> credentials at all.
That's what I though for moment. Can such thing (caching MD5/whatever
hash locally for some period) accomplished on Linux?
By default locking screen doesn't not produce request for new TGT, I
mean if workstation is locked. But can be changed via group policy.
More information about the Kerberos
mailing list