hartmans at MIT.EDU
Wed Jan 14 18:03:52 EST 2004
>>>>> "Wachdorf," == Wachdorf, Daniel R <drwachd at sandia.gov> writes:
Wachdorf,> I know that the define KRBCONF_KDC_MODIFIES_KDB can be
Wachdorf,> used to blacklist users by writing to the kdb every
Wachdorf,> time a user enters an incorrect password. The comments
Wachdorf,> in the code indicate that this cannot be used with
Wachdorf,> replication. Why is that the case?
Well, our KDC will not replicate the information very effectively so
you get more tries than you strictly should.
More information about the krbdev