How can I get the encryption type from PREAUTH error reply?
Jeffrey Altman
jaltman at columbia.edu
Wed Apr 20 06:01:26 EDT 2005
Would you please explain what you mean by "I am working on the preauth
feature?"
Are you attempting to add functionality to the existing MIT
implementation of timestamp pre-authentication?
Are you attempting to write your own?
The reason I ask is that an application developer should not need to
aware of the internal workings of the pre-authentication mechanism.
Jeffrey Altman
Surendra Babu Ande wrote:
> Hello Krbdev,
>
> I am working on the preauth feature.
> What is preauthentication feature?: The client sends a pre-authentication request (In ASREQ pkt) with client's timestamp and user's password encrypted messages.
>
> The question is: what encryption type to be used to send the encrypted message? If the client side enctype is not supported at KDC server, it will throw PREAUTH failed error.
>
> To overcome this issue, we need to capture the encryption type from the Preauth errror reply message. With that KDc supported enctype, we will encrypt the message send it to KDC server.
>
> Now my question is : HOW TO EXTRACT THE SERVER's ENCRYPTION TYPE FROM THE PREAUTH ERROR REPLY MESSAGE?
>
> Please let me know your opinion on this? How to extract the enctype from the preauth reply message?
>
> (In KDC server code: Get_in_tkt.c file? Any hints? How to extract it?)
> Thank you,
> -Surendra
>
>
>
>
>
> ---------------------------------
> Do you Yahoo!?
> Plan great trips with Yahoo! Travel: Now over 17,000 guides!
> _______________________________________________
> krbdev mailing list krbdev at mit.edu
> https://mailman.mit.edu/mailman/listinfo/krbdev
More information about the krbdev
mailing list