Annoying password expiry messages.
Mark Davies
mark at ecs.vuw.ac.nz
Mon Mar 5 15:41:27 EST 2012
On 03/06/12 06:27, Greg Hudson wrote:
> (1) Avoid the use of principal expiry times
> (2) Patch your KDC not to send principal expiry times in AS replies
> (3) Deploy the MIT krb5 fix to your client systems
>
> I can send a patch for (2) or (3) if you decide to go that route. (3)
> should happen by itself eventually as the fix makes its way through the
> pipeline, of course.
(3) sounds good if you could send me the patch please. If its not ready
yet I'll go with (1) as a short term fix until it is.
cheers
mark
More information about the Kerberos
mailing list