[39320] in Kerberos
Re: Using PKINIT with ECC
daemon@ATHENA.MIT.EDU (Greg Hudson)
Mon Nov 20 17:34:27 2023
Message-ID: <e27ddc92-43aa-4b9f-b78c-18bddaebaf7b@mit.edu>
Date: Mon, 20 Nov 2023 17:34:07 -0500
MIME-Version: 1.0
Content-Language: en-US
To: Ken Hornstein <kenh@cmf.nrl.navy.mil>, <kerberos@mit.edu>
From: "Greg Hudson" <ghudson@mit.edu>
In-Reply-To: <202311201909.3AKJ96j2009434@hedwig.cmf.nrl.navy.mil>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: kerberos-bounces@mit.edu
On 11/20/23 14:09, Ken Hornstein via Kerberos wrote:
> I guess what I was thinking was maybe not EVERY pkiDebug() call, but
> more all of the ones that report errors.
I think we're in agreement. Setting an extended error message should
generally be sufficient, as it should get trace logged by libkrb5 or
included in the KDC log.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
