Concurrent access to replay cache
Sam Hartman
hartmans at MIT.EDU
Thu Apr 15 09:35:03 EDT 2004
>>>>> "Daniel" == Daniel Kouril <kouril at ics.muni.cz> writes:
Daniel> Hi, is the replay cache mechanism supposed to work with
Daniel> multiple processes accessing the same rc_* file at the
Daniel> same time?
Yes.
Daniel> I've run into problems working on the kerberos
Daniel> module for apache (modauthkerb.sf.net), which verifies the
Daniel> user's password against KDC.
However it doesn't actually work. This is a known problem.
For Kerberos 1.3.x I'd recommend creating some sort of application
level lock if possible around calls to gss_accept_sec_context and
krb5_verify_init_creds.
More information about the krbdev
mailing list