krb5-kdc: Cannot change passwords if password history is used

[Tom Yu]

Nico Williams <nico at cryptonector.com> writes:

> But there's no integrity protection for most of the KDB, so there's no
> way to know if the problem is corruption.  That said, I agree with
> you: removing the required key == removing that part of the password
> history keyed with that key.

The keys that the KDC uses to encrypt long-term keys (and key
histories) in the KDB typically provide integrity protection.  What
sort of corruption were you thinking of?