[892] in Kerberos-V5-bugs


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: v4 compatibility kdc doesn't deal properly with long lifetimes

daemon@ATHENA.MIT.EDU (Marc Horowitz)
Fri Oct 21 20:52:53 1994

To: "John G. Myers" <jgm+@cmu.edu>
Cc: krb5-bugs@MIT.EDU
Date: Fri, 21 Oct 1994 20:52:40 EDT
From: Marc Horowitz <marc@MIT.EDU>

>> The v4 compatibility kdc doesn't know about the lookup table for
>> long v4 lifetime values.  If a user has a 24-hour lifetime limit, the v4 
>> side of the kdc will happily grant tgt's with infinite lifetime.

Long v4 lifetimes are a CMU hack.  MIT kerberos v4 has never supported
them.  It's not surprising that krb5 doesn't, either.

		Marc


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[892] in Kerberos-V5-bugs

Re: v4 compatibility kdc doesn't deal properly with long lifetimes

daemon@ATHENA.MIT.EDU (Marc Horowitz)Fri Oct 21 20:52:53 1994

daemon@ATHENA.MIT.EDU (Marc Horowitz)
Fri Oct 21 20:52:53 1994