Cannot get name from default acceptor cred
Sam Hartman
hartmans at MIT.EDU
Wed Mar 9 15:29:15 EST 2011
You've correctly described the MIT behavior.
I think it would be reasonably challenging to figure out whether RFC
2743 permits this behavior or not.
Section 1.1.1.3 clearly permits the behavior if GSS_C_NO_CREDENTIAL is
passed into gss_accept_sec_context.
Actually between section 1.1.3 and 2.1.1 it seems fairly clear that the
MIT behavior is permitted by the specification.
--Sam
More information about the krbdev
mailing list