[3708] in Kerberos-V5-bugs
Re: [krbdev.mit.edu #1278] No prompter interface for krb5_get_init_creds_keytab
daemon@ATHENA.MIT.EDU (Marc Horowitz)
Tue Dec 17 14:39:07 2002
From: Marc Horowitz <marc@mit.edu>
To: rt-comment@krbdev.mit.edu
Cc: krb5-prs@mit.edu
In-Reply-To: "kenh@cmf.nrl.navy.mil via RT"'s message of "Tue, 17 Dec 2002 13:39:44 -0500 (EST)"
Message-ID: <t531y4g4erq.fsf@horowitz-m1.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Errors-To: krb5-bugs-admin@mit.edu
Date: 17 Dec 2002 14:38:33 -0500
"kenh@cmf.nrl.navy.mil via RT" <rt-comment@krbdev.mit.edu> writes:
>> I need to use a host key in a keytab (hence keytab) as a user's
>> long-term key with a hardware token (user interaction).
Why do you need to do this? When, in the real world, would this ever
happen?
>> This is to implement Matt Crawford's hw-auth draft. Okay, so
>> technically I don't need a keytab interface, but there's no way to
>> give the API a raw key and provide a prompter interface, and that's
>> the real deficiency.
You haven't convinced me there's a deficiency here.
Marc
_______________________________________________
krb5-bugs mailing list
krb5-bugs@mit.edu
http://mailman.mit.edu/mailman/listinfo/krb5-bugs
