Requesting use of addresses in forwardable tickets
Sam Hartman
hartmans at MIT.EDU
Wed Sep 11 15:40:01 EDT 2002
>>>>> "Douglas" == Douglas E Engert <deengert at anl.gov> writes:
Douglas> Sam Hartman wrote:
>> >>>>> "Douglas" == Douglas E Engert <deengert at anl.gov> writes:
>>
Douglas> Are there (or can there) be any plans to allow a client
Douglas> to not request addresses in the forwardable tickets? You
Douglas> can already do this in kinit for the initial ticket.
>> It seems this is only consistent with the WG direction away
>> from addresses in tickets by default.
>>
Douglas> One way would be to not add addresses to a forwardble
Douglas> tickets if the original TGT did not have addresses.
>> Sounds like a winner to me.
Douglas> Well then, here is an (untested) mod to the KDC which
Douglas> should not add addresses if the original TGT did not have
Douglas> addresses:
This should be a client side change not a KDC side change.
More information about the krbdev
mailing list