[xad] Re: Kerberos PAC info on MSDN Library
Luke Kenneth Casson Leighton
lkcl at samba-tng.org
Tue Feb 26 10:11:01 EST 2002
On Tue, Feb 26, 2002 at 07:32:42PM +1100, Luke Howard wrote:
>
> > using this method requires that you strip out or create
> > a "header" - including a unique identifier (uuid) as
> > defined in the idl file that you must create to do the
> > picking/unpickling.
> >
> > example test code is in a dce rfc, which you can
> > cross-reference from dcerpc.net/url.
>
> Looking at idl_es_put_encoding_header() in idllib/pickling.c,
> it appears that this header is 56 bytes; the KDC (HDB) backend
> can pickle the PAC, move past the header, and return it to
> the KDC.
that's the stuff!
later on it will be a simple job to add additional functions
to pickling.c that will not require the 56 byte header.
this was something that rich et al intended to do but didn't
get round to: there was no requirement for it at the time.
lkcl
More information about the krbdev
mailing list