[krbdev.mit.edu #7996] git commit
Tom Yu via RT
rt-comment at krbdev.mit.edu
Thu Aug 21 18:11:04 EDT 2014
Simplify and improve ksu cred verification
When verifying the user's initial credentials, don't compute a server
name and preemptively obtain creds for it. This change allows
krb5_verify_init_creds to use any host key in the keytab, and not just
the one for the canonicalized local hostname.
[ghudson at mit.edu: rewrote commit message]
(cherry picked from commit bbfe19f03bdeca7b05b542dbae4c1692c9800c70)
https://github.com/krb5/krb5/commit/7b0fd353be446c9f148ac5d870610413ce361c45
Author: Nalin Dahyabhai <nalin at redhat.com>
Committer: Tom Yu <tlyu at mit.edu>
Commit: 7b0fd353be446c9f148ac5d870610413ce361c45
Branch: krb5-1.13
src/clients/ksu/krb_auth_su.c | 116 +---------------------------------------
1 files changed, 3 insertions(+), 113 deletions(-)
More information about the krb5-bugs
mailing list