[1750] in Kerberos-V5-bugs


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

cache file bug

daemon@ATHENA.MIT.EDU (Andrew Gross)
Wed Dec 20 05:06:31 1995

From: Andrew Gross <grossa@SDSC.EDU>
Date: Wed, 20 Dec 95 02:06:37 PST
To: krb5-bugs@MIT.EDU

Hello,

   There is a small problem where by kinit will store the ccache file
through a symlink.  This can be used to force a user's tickets to be
stored on an NFS mounted (or exported) partition.  This is the same
bug that was reported in elm recently.

   I think that adding O_EXCL to the FCC_OPEN_AND_ERASE option of
krb5_fcc_open_file() (fcc_maybe.c) will take care of the problem.
The corresponding change will be needed in krb5_scc_open_file().

Thanks,
Andrew Gross


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[1750] in Kerberos-V5-bugs

cache file bug

daemon@ATHENA.MIT.EDU (Andrew Gross)Wed Dec 20 05:06:31 1995

daemon@ATHENA.MIT.EDU (Andrew Gross)
Wed Dec 20 05:06:31 1995