[15700] in Kerberos_V5_Development

home help back first fref pref prev next nref lref last post

Re: Proper way to do logging (KDC) from preauth plugin?

daemon@ATHENA.MIT.EDU (Greg Hudson)
Thu Apr 22 13:57:27 2010

From: Greg Hudson <ghudson@mit.edu>
To: Jeff Blaine <jblaine@kickflop.net>
In-Reply-To: <4BD07263.6070304@kickflop.net>
Date: Thu, 22 Apr 2010 13:57:23 -0400
Message-ID: <1271959043.19726.79.camel@ray>
Mime-Version: 1.0
Cc: "krbdev@mit.edu" <krbdev@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu

On Thu, 2010-04-22 at 11:59 -0400, Jeff Blaine wrote:
> Any advice?  This preauth plugin must be called and
> must succeed.

I see.  What you want is for your plugin to be invoked at preauth
verification time even though the client doesn't have any understanding
of your mechanism (because it happens out of band).  Unfortunately, I
don't think that kind of use is currently envisioned by the preauth
framework.


_______________________________________________
krbdev mailing list             krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev

home help back first fref pref prev next nref lref last post