[16384] in Kerberos_V5_Development
Re: Review of Projects/Kadmin hook interface
daemon@ATHENA.MIT.EDU (Russ Allbery)
Mon Sep 27 15:51:45 2010
From: Russ Allbery <rra@stanford.edu>
To: Sam Hartman <hartmans@mit.edu>
In-Reply-To: <tsltylbuft2.fsf@live.suchdamage.org> (Sam Hartman's message of
"Mon, 27 Sep 2010 15:50:17 -0400")
Date: Mon, 27 Sep 2010 12:51:40 -0700
Message-ID: <877hi7ufqr.fsf@windlord.stanford.edu>
MIME-Version: 1.0
Cc: lha@h5l.org, krbdev@mit.edu,
Nicolas Williams <nicolas.williams@oracle.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
Sam Hartman <hartmans@mit.edu> writes:
>>>>>> "Nicolas" == Nicolas Williams <Nicolas.Williams@oracle.com> writes:
> Nicolas> Why not just do password change with randomized password,
> Nicolas> so that way you have a password you can synchronize? This
> Nicolas> is basically what AD does too.
> I'd support this change, although it's probably beyond the scope of what
> I'm doing to implement.
To mention, for those who aren't familiar, Heimdal has both random key and
random password options. The latter is indeed very useful; we use it all
the time now.
--
Russ Allbery (rra@stanford.edu) <http://www.eyrie.org/~eagle/>
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
