[24153] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Programming in Kerberos

daemon@ATHENA.MIT.EDU (Russ Allbery)
Mon Jun 27 16:42:54 2005

From: Russ Allbery <rra@stanford.edu>
Date: Mon, 27 Jun 2005 13:30:56 -0700
Message-ID: <87wtof7da7.fsf@windlord.stanford.edu>
To: kerberos@mit.edu
Errors-To: kerberos-bounces@mit.edu

Wyllys Ingersoll <wyllys.ingersoll@sun.com> writes:

> Ideally, you wouldn't use the KRB5 APIs at all, you would use GSSAPI
> instead - it is standard and portable across implementations and
> platforms.

Hm, is there a way to use GSSAPI to do password verification?  It's
annoying that one has to do this, but alas it's still fairly common to
have to send a Kerberos username/password pair over a TLS connection to be
verified on the server.  GSSAPI client support is slow to materialize.

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[24153] in Kerberos

Re: Programming in Kerberos

daemon@ATHENA.MIT.EDU (Russ Allbery)Mon Jun 27 16:42:54 2005

daemon@ATHENA.MIT.EDU (Russ Allbery)
Mon Jun 27 16:42:54 2005