Cannot get name from default acceptor cred

Sam Hartman hartmans at MIT.EDU
Wed Mar 9 15:29:15 EST 2011

You've correctly described the MIT behavior.

I think it would be reasonably challenging to figure out whether RFC
2743 permits this behavior or not.
Section clearly permits the behavior if GSS_C_NO_CREDENTIAL is
passed into gss_accept_sec_context.

Actually between section 1.1.3 and 2.1.1 it seems fairly clear that the
MIT behavior is permitted by the specification.


More information about the krbdev mailing list