[2476] in Kerberos_V5_Development
Re: Password expiration via a preauth mechanism
daemon@ATHENA.MIT.EDU (Assar Westerlund)
Fri Aug 1 07:47:55 1997
To: Ken Hornstein <kenh@cmf.nrl.navy.mil>
Cc: krbdev@MIT.EDU
From: Assar Westerlund <assar@sics.se>
Date: 01 Aug 1997 13:47:10 +0200
In-Reply-To: Ken Hornstein's message of Thu, 31 Jul 1997 13:20:12 -0400
Ken Hornstein <kenh@cmf.nrl.navy.mil> writes:
> So, I'm looking at this, and I don't quite understand:
>
> #define KRB5_LRQ_ALL_LAST_TGT 1
> #define KRB5_LRQ_ONE_LAST_TGT (-1)
> ...
>
> What's the difference between LRQ_ALL and LRQ_ONE?
LRQ_ALL means the time of the last initial request for a TGT, and
LRG_ONE the same but from this particular server.
From draft-ietf-cat-kerberos-revisions-00.txt:
lr-type This field indicates how the following lr-value
field is to be interpreted. Negative values indi-
cate that the information pertains only to the
responding server. Non-negative values pertain to
all servers for the realm.
/assar
