[37851] in Kerberos
Re: Session tickets - question
daemon@ATHENA.MIT.EDU (Benjamin Kaduk)
Wed Feb 1 23:54:30 2017
Date: Wed, 1 Feb 2017 22:54:14 -0600
From: Benjamin Kaduk <kaduk@mit.edu>
To: "Michalewicz, Brian R (CTO Technology)" <Brian.Michalewicz@thehartford.com>
Message-ID: <20170202045413.GS8460@kduck.kaduk.org>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <5EB2DEF5E428C94D886C62815DBD2A437F180EF7@AD1HFDEXC406.ad1.prod>
Cc: "kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Wed, Feb 01, 2017 at 03:10:31PM +0000, Michalewicz, Brian R (CTO Technology) wrote:
> Good morning !! are session tickets forwardable ?
The question could probably do with a more concrete statement.
(I assume you mean service tickets, not session tickets, which are a TLS thing.)
Taking a guess that you mean to forward a session ticket instead of a TGT,
e.g., while ssh-ing to a remote host, I believe that the protocol supports
that but that implementation support is lacking, as it's a rather unusual
thing to want to do.
-Ben
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
