Support for Microsoft Set Password protocol
Nicolas Williams
Nicolas.Williams at sun.com
Wed Apr 2 16:37:32 EST 2003
On Wed, Apr 02, 2003 at 01:27:55PM -0800, Nicolas Williams wrote:
> On Wed, Apr 02, 2003 at 03:36:00PM -0500, Ken Hornstein wrote:
> > I agree, this would be the ideal way. I'm just not sure right now
> > how you would negotiate it (is it possible?). But if you've got a config
> > file out there already, I can't see the harm in putting that info
> > in there.
>
> Provided that the existing two versions of the protocol (v1 and the MS
> kpasswd protocol) and the new protocol (v2) all use the same framing
> (they do) if they use the same ports (they do) and that all existing
^^^^^^^
There's one minor framing diff between the MIT v1 and MS kpasswd
protocols: any KRB-ERRORs are not framed in the MS protocol.
I know what the MIT kpasswd service does when presented with requests
for kpasswd versions other than 1. I'd love to know what the MS kpasswd
service does when presented with requests for kpasswd versions other
than 0x1 and 0xff80.
Nico
--
More information about the krbdev
mailing list