Reuse of GSSAPI Tokens

Jiva DeVoe jiva at
Thu Jul 21 12:03:46 EDT 2005

I'm not sure what this means.

Is it possible to use the token twice?  Or not?

I mean, obviously, I could reuse the context itself... am just  
curious if kerberos defines that a token may not be used to establish  
more than one context.

What is Replay caching?

On Jul 21, 2005, at 11:57 AM, Nicolas Williams wrote:

> On Thu, Jul 21, 2005 at 09:37:33AM -0400, Jiva DeVoe wrote:
>> Is it possible to use a token generated by the GSSAPI call
>> gss_init_sec_context call to establish more than one security context
>> via the gss_accept_sec_context call?
>> Meaning, can I pass a token to gss_accept more than once?  In my
>> testing, it appears I can't.  Subsequent calls result in an invalid
>> context.  If this is the case, I'm curious how this is done, since my
>> token appears to be unchanged.
> Replay caching.

Jiva DeVoe
PowerCard - Intuitive Project Management Software for Mac OS X

More information about the krbdev mailing list