Session key extraction

Nicolas Williams Nicolas.Williams at
Tue Dec 23 00:28:46 EST 2008

On Tue, Dec 23, 2008 at 10:10:50AM +1100, Luke Howard wrote:
> Microsoft protocols that need this include SMB and DRS (replication  
> service). I believe Samba, Novell, and Likewise will require this.

Perhaps you'll need to add NegoEx to that list.

> Presently there is no explicit API for this, it is indirected through  
> gss_inquire_sec_context_by_oid() with GSS_C_INQ_SESSION_KEY.

Yes, I like something like that.  But add the word "DANGER" to the
symbol name (or something scary).

More information about the krbdev mailing list