[15759] in Kerberos_V5_Development
Re: RFC 4121 - Context Deletion Tokens
daemon@ATHENA.MIT.EDU (Nicolas Williams)
Thu May 6 11:35:14 2010
Date: Thu, 6 May 2010 10:34:44 -0500
From: Nicolas Williams <Nicolas.Williams@oracle.com>
To: Srinivas Cheruku <srinivas.cheruku@gmail.com>
Message-ID: <20100506153444.GQ9429@oracle.com>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <4be2aa2b.8e83e30a.683c.37db@mx.google.com>
Cc: ietf-krb-wg@anl.gov, krbdev@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On Thu, May 06, 2010 at 05:08:12PM +0530, Srinivas Cheruku wrote:
> Does this mean that the application should have its own way of ending a
> session
Yes.
> and no GSS is involved in doing so?
Well, you'd want to protect the application "delete context" message
with a MIC or a wrap.
> So, why MIT code is still generating context deletion token with TOK_ID
> 0x0405?
I don't know.
Nico
--
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev