[1189] in Kerberos
re: Database Frobbing (was Re: What are a principal's attributes used for?)
daemon@ATHENA.MIT.EDU (John T Kohl)
Wed Dec 19 09:13:51 1990
Date: Wed, 19 Dec 90 08:38:20 -0500
From: John T Kohl <jtkohl@MIT.EDU>
To: martin@iastate.edu
Cc: kerberos@MIT.EDU, jon@MIT.EDU
In-Reply-To: Jon's message <9012190500.AA01010@paddington.MIT.EDU>
Martin asks "is there a particular reason why kdb_edit, or some such
program, doesn't support a delete operation".
Besides the reasons Jon Rochlis gave, there's also a security-related
one. If you delete names and they get re-used, there's a chance that
the new owner of the name may get unintended access to services which
have the name on an Access Control List, but didn't remove it when the
old principal was destroyed.
John
