[20495] in Kerberos_V5_Development
Re: A Local KDC
daemon@ATHENA.MIT.EDU (Greg Hudson)
Mon Jul 8 11:03:42 2024
Message-ID: <d75f2a80-5fdc-4e27-bde6-e34556fb2bbf@mit.edu>
Date: Mon, 8 Jul 2024 11:03:32 -0400
MIME-Version: 1.0
To: Andreas Schneider <asn@samba.org>, krbdev@mit.edu
Cc: ab@samba.org
Content-Language: en-US
From: "Greg Hudson" <ghudson@mit.edu>
In-Reply-To: <2704239.vuYhMxLoTh@magrathea>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: krbdev-bounces@mit.edu
On 7/8/24 01:29, Andreas Schneider wrote:
> I spend time time doing a deeper dive. I think the first thing we need to do
> is to agree on the config options and how they should work.
Given what we have now, I think we want to add the realm variable
"kdc_unix_listen = pathname".
> Currently we simply start listening on the port for udp and tcp by default.
>
> - Should a unix socket be an additional socket?
Yes? (Is there a way it could be the same socket?)
> - Should the specification off a unix socket turn off tcp/udp?
No.
> - How do we disable tcp/udp listeners?
kdc_tcp_listen = ""
kdc_listen = ""
(already works, although in an apparent oversight only kdc_tcp_listen =
"" is documented)
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
