[1437] in Kerberos_V5_Development


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Why can you not rename a random key with the new admin server?

daemon@ATHENA.MIT.EDU (Marc Horowitz)
Sat Jul 27 21:36:03 1996

To: epeisach@MIT.EDU
Cc: krbcore@MIT.EDU
Date: Sat, 27 Jul 1996 21:35:48 EDT
From: Marc Horowitz <marc@MIT.EDU>

>> Am I confused, but shouldn't you be able to rename a random key?

yeah, you should.

>> So I guess the real problem is that there is no way to distingush
>> between a random key and the "salttype_normal" variety? Or perhaps,
>> maybe random keys should set the salttype to SALTTYPE_ONLYREALM? 

well, you could rename the principal's realm, too.  We could use
krb5_kdb_salttype_v4 for random keys, since that has no salt, it's
always safe.

		Marc


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[1437] in Kerberos_V5_Development

Re: Why can you not rename a random key with the new admin server?

daemon@ATHENA.MIT.EDU (Marc Horowitz)Sat Jul 27 21:36:03 1996

daemon@ATHENA.MIT.EDU (Marc Horowitz)
Sat Jul 27 21:36:03 1996