Query regarding max_life.
P Santoshkumar
psantoshkumar at novell.com
Thu Jun 15 07:17:45 EDT 2006
Hello,
In kadm5_get_config_params the value of max_life is set to 1 day if it
is not present in the file and 0 for max_renewable_life. Is there any
particular reason that the default value for max_life is not 0 and 1
day?
This is extract from the function kadm5_get_config_params.
hierarchy[2] = "max_life";
if (params_in->mask & KADM5_CONFIG_MAX_LIFE) {
params.mask |= KADM5_CONFIG_MAX_LIFE;
params.max_life = params_in->max_life;
} else if (aprofile &&
!krb5_aprof_get_deltat(aprofile, hierarchy, TRUE,
&dtvalue)) {
params.max_life = dtvalue;
params.mask |= KADM5_CONFIG_MAX_LIFE;
} else {
params.max_life = 24 * 60 * 60; /* 1 day */
params.mask |= KADM5_CONFIG_MAX_LIFE;
}
/* Get the value for maximum renewable ticket lifetime. */
hierarchy[2] = "max_renewable_life";
if (params_in->mask & KADM5_CONFIG_MAX_RLIFE) {
params.mask |= KADM5_CONFIG_MAX_RLIFE;
params.max_rlife = params_in->max_rlife;
} else if (aprofile &&
!krb5_aprof_get_deltat(aprofile, hierarchy, TRUE,
&dtvalue)) {
params.max_rlife = dtvalue;
params.mask |= KADM5_CONFIG_MAX_RLIFE;
} else {
params.max_rlife = 0;
params.mask |= KADM5_CONFIG_MAX_RLIFE;
}
Thanks and Regards,
Santosh.
More information about the krbdev
mailing list