[2021] in Kerberos-V5-bugs
[tytso@MIT.EDU: Re: V4 vs. V5 principal expiration]
daemon@ATHENA.MIT.EDU (Barry Jaspan)
Thu Jun 20 10:20:09 1996
Date: Thu, 20 Jun 96 10:19:53 -0400
From: "Barry Jaspan" <bjaspan@MIT.EDU>
To: krb5-bugs@MIT.EDU
Ted's suggestion is fine with me.
Barry
------- Start of forwarded message -------
Date: Wed, 19 Jun 1996 21:41:35 -0400
From: "Theodore Y. Ts'o" <tytso@MIT.EDU>
To: "Barry Jaspan" <bjaspan@MIT.EDU>
Cc: krbdev@MIT.EDU
In-Reply-To: Barry Jaspan's message of Tue, 18 Jun 96 12:06:11 -0400,
<9606181606.AA21775@beeblebrox.MIT.EDU>
Subject: Re: V4 vs. V5 principal expiration
Address: 1 Amherst St., Cambridge, MA 02139
Phone: (617) 253-8091
Date: Tue, 18 Jun 96 12:06:11 -0400
From: "Barry Jaspan" <bjaspan@MIT.EDU>
Looking at the code, kerberos_v4.c clearly does not have an exception
for an expiration time of zero meaning "never":
if ((u_long) p->exp_date < (u_long) kerb_time.tv_sec) {
/* service did expire, log it */
...
}
I'd propose we fix this problem by changing the behavior of
kerberos_v4.c so that expiration time of zero does mean "never".
- Ted
------- End of forwarded message -------
