[2467] in Kerberos_V5_Development
Re: Password expiration via a preauth mechanism
daemon@ATHENA.MIT.EDU (Ken Hornstein)
Wed Jul 30 17:02:37 1997
To: Marc Horowitz <marc@cygnus.com>
Cc: Sam Hartman <hartmans@MIT.EDU>, krbdev@MIT.EDU
In-Reply-To: Your message of "30 Jul 1997 16:37:33 EDT."
<t537me8uvhu.fsf@rover.cygnus.com>
Date: Wed, 30 Jul 1997 17:00:32 -0400
From: Ken Hornstein <kenh@cmf.nrl.navy.mil>
>KerbNet does this. I seem to remember that there was a related bug in
>the kdc, but I don't recall what it was.
From my reading of the KerbNet code, it only places the pw_expiration
field in key_exp, not the minimum of the client expiration and the pw
expiration.
--Ken
