[4638] in Kerberos
Re: Password limitations
daemon@ATHENA.MIT.EDU (Donald Sharp#Other)
Fri Feb 17 10:32:14 1995
Date: Fri, 17 Feb 1995 10:08:09 -0500
From: Donald Sharp#Other <cc32859@vantage.FMR.Com>
To: sadkins%ohiou.edu@stowe.FMR.Com, delza%viking.cns.ohiou.edu@stowe.FMR.Com
Cc: kerberos%MIT.EDU@stowe.FMR.Com
>We are thinking of using strings up to 14 characters long that must
>remain unique, so if kerberos truncates before 14 characters we're
>going to run into trouble.
Kerberos uses an algorithm to convert variable length password strings
to DES keys. The only limit on the length I can see is the size of the
buffer allocated to hold the password input (in the file
.../krb5/src/lib/krb5/krb/in_tkt_pwd.c) which is BUFSIZ, which on my
SunOS 4.1.3 is defined in stdio.h to be 1024. Your configuration may
be slightly different.
--------
Don Sharp cc32859@vantage.fmrco.com
Fidelity Investments (617) 570-3905
82 Devonshire St. A2A
Boston, MA 02109
