Replaying and server side caching.

Tom Yu tlyu at MIT.EDU
Thu Apr 10 23:56:23 EDT 2003

>>>>> "darrenr" == Darren Reed \(OSE\) <Darren> writes:

darrenr> If the attacker can re-use a TGT request that has already been sent to
darrenr> cause a valid TGT response to come back, then the attacker can gain
darrenr> access where perhaps they previously could not.

The TGT response won't do an attacker much good without the session


More information about the krbdev mailing list