[17190] in Kerberos_V5_Development
Re: gss_pname_to_uid: is that the right interface
daemon@ATHENA.MIT.EDU (Luke Howard)
Tue Sep 20 22:43:49 2011
Mime-Version: 1.0 (Apple Message framework v1244.3)
From: Luke Howard <lukeh@padl.com>
In-Reply-To: <CAK3OfOja-GNMCoCydGrOX330WqYpTpT_rRcaBZw8PD_59dRteA@mail.gmail.com>
Date: Wed, 21 Sep 2011 12:43:37 +1000
Message-Id: <032A5C36-9E29-4A0B-917F-719700D3E943@padl.com>
To: Nico Williams <nico@cryptonector.com>
Cc: lha@h5l.org, Sam Hartman <hartmans@mit.edu>, krbdev@mit.edu,
Simo Sorce <simo@redhat.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
> What's bad about gss_pname_to_uid() is that it deals in UIDs, thus is
> inherently not portable. A gss_aname_to_lname() would be more
> portable, but could still conceivably suffer from timing issues.
FWIW, the only reason I resurrected gss_pname_to_uid() was out of a desire to, where possible, not diverge from the Solaris mechanism glue. But I realise in retrospect this was probably somewhat misguided.
-- Luke
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
