[17025] in Kerberos-V5-bugs
[krbdev.mit.edu #9177] Password expiry date shown as 2100
daemon@ATHENA.MIT.EDU (Greg Hudson via RT)
Mon Jul 7 13:18:07 2025
From: "Greg Hudson via RT" <rt@kerborg-prod-app-1.mit.edu>
In-Reply-To: <0cd36f49-971b-4976-88b7-d46a444bc1f7@kit.edu>
Message-ID: <rt-4.4.3-2-1168337-1751908680-1540.9177-5-0@kerborg-prod-app-1.mit.edu>
To: "AdminCc of krbdev.mit.edu Ticket #9177":;
Date: Mon, 07 Jul 2025 13:18:01 -0400
MIME-Version: 1.0
Reply-To: rt@kerborg-prod-app-1.mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krb5-bugs-bounces@mit.edu
<URL: http://kerborg-prod-app-1.mit.edu/rt/Ticket/Display.html?id=9177 >
This bug was fixed in release 1.21 by
commit 29600cf1db888d91c42cbd6cf72652afe8c1ee66 (ticket 9071, https://
github.com/krb5/krb5/pull/1266 ). The problem was the use of a signed 32-bit
value to hold the interval.
(It would of course be nice if Microsoft's Kerberos implementation didn't use
arbitrary dates in the far future when it means "never". A KDC can simply not
transmit a password expiration time.)
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
https://mailman.mit.edu/mailman/listinfo/krb5-bugs
