[krbdev.mit.edu #6585] SVN Commit

Sam Hartman via RT rt-comment at krbdev.mit.edu
Mon Nov 23 19:53:36 EST 2009


Per the latest preauth framework spec, the working group has decided
to forbid ap-request armor in the TGS request because of security
problems with that armor type.

This commit was tested against an implementation of FAST TGS client to
confirm that if explicit armor is sent, the request is rejected.

http://src.mit.edu/fisheye/changelog/krb5/?cs=23324
Commit By: hartmans
Revision: 23324
Changed Files:
U   users/hartmans/fast-negotiate/src/kdc/fast_util.c




More information about the krb5-bugs mailing list