[30293] in Kerberos

home help back first fref pref prev next nref lref last post

Re: obtaining tickets by TCP

daemon@ATHENA.MIT.EDU (Victor Sudakov)
Fri Sep 12 11:33:27 2008

From: Victor Sudakov <vas@mpeks.no-spam-here.tomsk.su>
Date: Fri, 12 Sep 2008 08:59:22 +0000 (UTC)
Message-ID: <gadb1a$21mc$2@relay.tomsk.ru>
X-Complaints-To: noc@sibptus.tomsk.ru
X-Comment-To: Ken Raeburn <raeburn@MIT.EDU>
To: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Ken Raeburn wrote:
> >
> > Is there a way to configure a Kerberos client to use TCP for obtaining
> > tickets, other that explicitly listing all KDC's in krb5.conf with
> > the "tcp" prefix?
> >
> > I want to be able to prefer TCP transport and still retain the
> > possibility of using DNS SRV records to lookup KDCs.

> The setting "udp_preference_limit" (under libdefaults) indicates the  
> minimum outgoing packet size for which the library will try TCP  
> first.  If it doesn't get through with TCP, it will still try UDP;  
> this only controls the order.

Sorry, I did not mention I was talking about Heimdal.

-- 
Victor Sudakov,  VAS4-RIPE, VAS47-RIPN
2:5005/49@fidonet http://vas.tomsk.ru/
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post