[16206] in Kerberos_V5_Development
Re: Pasword quality pluggable interface project review
daemon@ATHENA.MIT.EDU (Sam Hartman)
Mon Aug 30 18:22:43 2010
From: Sam Hartman <hartmans@mit.edu>
To: Greg Hudson <ghudson@mit.edu>
Date: Mon, 30 Aug 2010 18:22:11 -0400
In-Reply-To: <1283187439.9882.193.camel@ray> (Greg Hudson's message of "Mon,
30 Aug 2010 12:57:18 -0400")
Message-ID: <tslbp8jkagc.fsf@mit.edu>
MIME-Version: 1.0
Cc: "krbdev@mit.edu" <krbdev@mit.edu>, Marcus Watts <mdw@umich.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
>>>>> "Greg" == Greg Hudson <ghudson@MIT.EDU> writes:
>> I agree the existing error codes are pretty narrowly scoped. I'm not
>> sure how I'd add more to be useful, given the error codes should be
>> remotely visible.
Greg> It's apparent to me now that there's a lot of room for improving our
Greg> support for password quality errors over the password change protocol.
Greg> For schedule reasons, I'm going to defer that to future work--in
Greg> particular, to the part of the future after we have localization.
I can understand deferring revising our set-change password support.
However, as Russ pointed out, the existing change protocol has a way for
a text error to come back--Heimdal does that. I think we need to at
least support this in the plugin interface even if you don't write the
glue now to make it work.
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
