[980] in Kerberos_V5_Development


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

set_default_in_tkt_ktypes

daemon@ATHENA.MIT.EDU (Sam Hartman)
Fri Jan 26 16:04:22 1996

Date: Fri, 26 Jan 1996 16:03:55 -0500
From: Sam Hartman <hartmans@MIT.EDU>
To: krbdev@MIT.EDU


	Is there a really good reason for hard coding this procedure
instead of allowing it to read something from krb5.conf?


	Also,  I think I'm going to remove the check to make sure that
a ticket in the credentials cache is one of the default tgs enctypes.
It creates a problem if your default tgs enctypes do not include DES3,
and you get a DES3 tgt, because you will not be able  to use this tgt
unless an application specifically requests a DES3 ticket under the
current scheme.  I see no reason that the ccache code shouldn't return
any valid ticket in the cache for the service when the user has not
requested a particular enctype.

--Sam


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[980] in Kerberos_V5_Development

set_default_in_tkt_ktypes

daemon@ATHENA.MIT.EDU (Sam Hartman)Fri Jan 26 16:04:22 1996

daemon@ATHENA.MIT.EDU (Sam Hartman)
Fri Jan 26 16:04:22 1996