[11227] in Kerberos-V5-bugs
[krbdev.mit.edu #6585] SVN Commit
daemon@ATHENA.MIT.EDU (Sam Hartman via RT)
Mon Nov 23 20:05:53 2009
Mail-followup-to: rt@krbdev.mit.edu
mail-copies-to: never
From: "Sam Hartman via RT" <rt-comment@krbdev.MIT.EDU>
In-Reply-To: <rt-6585@krbdev.mit.edu>
Message-ID: <rt-6585-31869.17.23376233673@krbdev.mit.edu>
To: "'AdminCc of krbdev.mit.edu Ticket #6585'":;"'AdminCc of krbdev.mit.edu Ticket #6585'":;@MIT.EDU
Date: Tue, 24 Nov 2009 01:05:31 +0000 (UTC)
Reply-To: rt-comment@krbdev.MIT.EDU
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
Per the latest preauth framework spec, the working group has decided
to forbid ap-request armor in the TGS request because of security
problems with that armor type.
This commit was tested against an implementation of FAST TGS client to
confirm that if explicit armor is sent, the request is rejected.
http://src.mit.edu/fisheye/changelog/krb5/?cs=23325
Commit By: hartmans
Revision: 23325
Changed Files:
U trunk/src/kdc/fast_util.c
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
