password change protocol implementation

Ken Hornstein kenh at
Mon Feb 16 22:55:31 EST 2004

>> >After all, kadmin uses the GSS-API, so precedent for the use of the
>> >GSS-API instead of raw Kerberos V for KDC-related services exists.
>> You mean that wacky, non-standardized, completely non-interoperable-between-
>> Kerberos-implementations protocol? :-)
>No, I mean RPCSEC_GSS, which is standardized.

You missed my point.  Let's say that everybody used RPCSEC_GSS today;
that wouldn't change the fact that the _underlying_ protocol hasn't
been standardized.  You still wouldn't get any interoperability between
Kerberos implementations.


More information about the krbdev mailing list