[1268] in Kerberos_V5_Development
Re: gssftp and kcmd dejagnu tests fail under ultrix
daemon@ATHENA.MIT.EDU (Tom Yu)
Sun Jun 2 21:34:41 1996
Date: Sun, 2 Jun 1996 21:34:28 -0400
To: Sam Hartman <hartmans@MIT.EDU>
Cc: Ezra Peisach <epeisach@MIT.EDU>, Tom Yu <tlyu@MIT.EDU>, krbdev@MIT.EDU
From: Tom Yu <tlyu@MIT.EDU>
In-Reply-To: <tsl91e5pwld.fsf@tertius.mit.edu>
So what if someone registers the domain KRBTEST.COM? Then anyone who
had their .k5login hacked to run the tests would be open to attack by
someone who controlls the kerberos server of KRBTEST.COM.
Maybe it is best if the kuser_ok logic appends the default realm to
any realm-less principals in the .k5login file.
---Tom
