KRBCONF_KDC_MODIFIES_KDB
Sam Hartman
hartmans at MIT.EDU
Wed Jan 14 18:03:52 EST 2004
>>>>> "Wachdorf," == Wachdorf, Daniel R <drwachd at sandia.gov> writes:
Wachdorf,> I know that the define KRBCONF_KDC_MODIFIES_KDB can be
Wachdorf,> used to blacklist users by writing to the kdb every
Wachdorf,> time a user enters an incorrect password. The comments
Wachdorf,> in the code indicate that this cannot be used with
Wachdorf,> replication. Why is that the case?
Well, our KDC will not replicate the information very effectively so
you get more tries than you strictly should.
More information about the krbdev
mailing list