(Final?) krb5.Conf Lexer/Parser Proposal
Jeffrey Altman
jaltman at MIT.EDU
Fri Jan 6 18:48:59 EST 2006
Jeffrey Hutzelman wrote:
> Realm configuration other than server locations seems likely to have
> security implications which would make it undesirable to trust any such
> information coming from a "public" source. Indeed, the only per-realm
> confiugration that appears in my krb5.conf other than server locations
> relates to V4 principal name conversion and domain->realm mappings.
Its the domain->realm mappings which I believe is why a public
repository would be useful. Of course, if you don't trust the
configuration file you shouldn't use it.
Jeffrey Altman
More information about the krbdev
mailing list