[1822] in Kerberos-V5-bugs
krb5_sname_to_principal comments lie
daemon@ATHENA.MIT.EDU (eichin@cyGNUs.COM)
Wed Feb 28 21:00:48 1996
Date: Wed, 28 Feb 1996 21:00:54 -0500
To: krb5-bugs@MIT.EDU
From: eichin@cyGNUs.COM
krb5/lib/krb5/os/sn2princ.c,76:
/*
* Do a reverse resolution to get the full name, just in
* case there's some funny business going on. If there
* isn't an in-addr record, give up.
*/
In fact, if gethostbyaddr returns NULL, it just keeps going...
Since we're vulnerable if this code ever talks to a real DNS (a
properly configured system should be looking in /etc/hosts first and
*really* had better find it's own name in there) might it be best to
remove this misleading comment? Or should the code change?
