[30293] in Kerberos
Re: obtaining tickets by TCP
daemon@ATHENA.MIT.EDU (Victor Sudakov)
Fri Sep 12 11:33:27 2008
From: Victor Sudakov <vas@mpeks.no-spam-here.tomsk.su>
Date: Fri, 12 Sep 2008 08:59:22 +0000 (UTC)
Message-ID: <gadb1a$21mc$2@relay.tomsk.ru>
X-Complaints-To: noc@sibptus.tomsk.ru
X-Comment-To: Ken Raeburn <raeburn@MIT.EDU>
To: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Ken Raeburn wrote:
> >
> > Is there a way to configure a Kerberos client to use TCP for obtaining
> > tickets, other that explicitly listing all KDC's in krb5.conf with
> > the "tcp" prefix?
> >
> > I want to be able to prefer TCP transport and still retain the
> > possibility of using DNS SRV records to lookup KDCs.
> The setting "udp_preference_limit" (under libdefaults) indicates the
> minimum outgoing packet size for which the library will try TCP
> first. If it doesn't get through with TCP, it will still try UDP;
> this only controls the order.
Sorry, I did not mention I was talking about Heimdal.
--
Victor Sudakov, VAS4-RIPE, VAS47-RIPN
2:5005/49@fidonet http://vas.tomsk.ru/
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos