[2464] in Kerberos_V5_Development
Re: Password expiration via a preauth mechanism
daemon@ATHENA.MIT.EDU (Ken Hornstein)
Wed Jul 30 15:16:08 1997
To: krbdev@MIT.EDU
In-Reply-To: Your message of "30 Jul 1997 14:10:17 CDT."
<x27me8fjae.fsf@umgah.mesas.com>
Date: Wed, 30 Jul 1997 15:14:12 -0400
From: Ken Hornstein <kenh@cmf.nrl.navy.mil>
> I think that if you want to =specify additional information or
>allow the warning time to be set on the KDC, it would be reasonable to
>use preauth. However, I would expect any KDC that implemented such a
>protocol to also include the information in the KDC reply.
I'm confused, I think. The preauth data is included as part of the KDC
reply right now, in my implementation. Did you mean something else?
It's not in the krb5_enc_kdc_rep_part, if that's what you mean.
--Ken
