DNS lookups and krb4 Support
Ken Raeburn
raeburn at MIT.EDU
Mon Jun 2 13:14:54 EDT 2003
Alexandra Ellwood <lxs at MIT.EDU> writes:
> (Note that the "kerberos.REALM" DNS lookups are from a old krb4 DNS
> config that Heimdal still supports -- basically it just calls
> gethostbyname("kerberos." + REALM) and uses the result as the
> server. Obviously this only works if the kerberos server in question
> is using the default ports and if the site has control over the DNS
> domain with the same name as the realm.)
Yep, we've got the same heuristic for krb4.
I don't think we should introduce it for krb5, giving administrators
yet another excuse to fail to provide information to clients, but we
could consider it, if anyone cares...
Ken
More information about the krbdev
mailing list