Ticket 5338: Race conditions in key rotation
Jeffrey Hutzelman
jhutz at cmu.edu
Wed Jun 25 18:24:54 EDT 2008
--On Wednesday, June 25, 2008 05:51:08 PM -0400 Jeffrey Altman
<jaltman at secure-endpoints.com> wrote:
> Its not the admin_server unless your master_kdc and admin_server records
> are pointing to the same
> machines.
I'm sorry, what records are those?
I have SRV records for
_KERBEROS._TCP
_KERBEROS._UDP
_KPASSWD._UDP
_KRB524._UDP
Which of these records does the MIT code use, and does your proposal use,
for identifying the "master" KDC in the absence of configuration in
krb5.conf?
-- Jeff
More information about the krbdev
mailing list