[15759] in Kerberos_V5_Development

home help back first fref pref prev next nref lref last post

Re: RFC 4121 - Context Deletion Tokens

daemon@ATHENA.MIT.EDU (Nicolas Williams)
Thu May 6 11:35:14 2010

Date: Thu, 6 May 2010 10:34:44 -0500
From: Nicolas Williams <Nicolas.Williams@oracle.com>
To: Srinivas Cheruku <srinivas.cheruku@gmail.com>
Message-ID: <20100506153444.GQ9429@oracle.com>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <4be2aa2b.8e83e30a.683c.37db@mx.google.com>
Cc: ietf-krb-wg@anl.gov, krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu

On Thu, May 06, 2010 at 05:08:12PM +0530, Srinivas Cheruku wrote:
> Does this mean that the application should have its own way of ending a
> session

Yes.

>         and no GSS is involved in doing so?

Well, you'd want to protect the application "delete context" message
with a MIC or a wrap.

> So, why MIT code is still generating context deletion token with TOK_ID
> 0x0405?

I don't know.

Nico
-- 
_______________________________________________
krbdev mailing list             krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev

home help back first fref pref prev next nref lref last post