[129] in pc-kerberos
Re: Upcoming potential changes in KRBV4*.DLL
daemon@ATHENA.MIT.EDU (John Gardiner Myers)
Wed Aug 2 11:40:01 1995
Date: Wed, 2 Aug 1995 11:33:01 -0400 (EDT)
From: John Gardiner Myers <jgm+@CMU.EDU>
To: pc-kerberos@MIT.EDU
In-Reply-To: <9508021440.AA13584@MIT.EDU>
pbh@MIT.EDU (Paul B. Hill ) writes:
> I guess I must be missing something once again. Suppose you actually got the
> world to start using your new kadmind. According to Derrick's message:
The world doesn't have to support the new opcode, just the subset that
wants to do anything with the Transarc string-to-key.
> Note the part about "assuming your client ..." The point is UMich, Cornell,
> and others have clients that default to using the Transarc string to key
> algorithm on various platforms.
>
> So I don't understand how you can say that they would not be required to
> re-deploy any clients.
These clients already do what UMich, Cornell, etc. want to do, and
they will continue to do that regardless of whether or not the server
supports any additional opcodes. So, the addition of an opcode to the
site's server implementation of the MIT v4 password changing protocol
does not necessitate their redeploying these clients.
> New clients would also know which string to key succeeded, if they got
> a KADM_NO_OPCODE they would use the same string to key method when changing
> the password. If they got MIT or TRANSARC they would override the
> information about which method was used for the initial authentication and
> then use the method that the server indicated.
We could make the opcode a tri-state thing, removing the need for
UMich, Cornell, &c to modify their servers, but making the state of
the world that much more complex for clients.
> Will CMU be ready supply MIT with diffs before the end of this week?
We're currently blocked waiting for MIT to officially allocate us a
number for the opcode. Depends on when MIT gets that done and how
extensive they want the diffs to be.
--
_.John G. Myers Internet: jgm+@CMU.EDU
LoseNet: ...!seismo!ihnp4!wiscvm.wisc.edu!give!up
