Request to change MIT Kerberos behavior when principal is expired, deleted or password changed
Russ Allbery
eagle at eyrie.org
Fri Mar 7 17:25:18 EST 2014
"Edgecombe, Jason" <jwedgeco at uncc.edu> writes:
> I don't see how anyone can object to rejecting requests for expired or
> deleted principals. I understand that the password changing aspect could
> be more controversial.
> Could we at least add the "reject requests for expired/removed
> principals" part?
+1. This seems like a much better default to me.
--
Russ Allbery (eagle at eyrie.org) <http://www.eyrie.org/~eagle/>
More information about the Kerberos
mailing list