[28439] in Kerberos

home help back first fref pref prev next nref lref last post

Re: pam-krb5 3.6 released

daemon@ATHENA.MIT.EDU (Russ Allbery)
Wed Sep 19 16:41:36 2007

From: Russ Allbery <rra@stanford.edu>
To: kerberos@mit.edu
In-Reply-To: <tslbqbyo0nd.fsf@mit.edu> (Sam Hartman's message of "Wed, 19 Sep
	2007 16:33:58 -0400")
Date: Wed, 19 Sep 2007 13:41:05 -0700
Message-ID: <87odfypevy.fsf@windlord.stanford.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Sam Hartman <hartmans@mit.edu> writes:

> I think that's a mischaracterization of the problem.  You need this
> whenever you have a service that needs to verify passwords but that
> cannot be trusted with a Kerberos key of its own.  It seems like that's
> going to be much more common than just xscreensaver.

True, although xscreensaver is the only practical case that I've heard
about so far.  But I believe you that there are probably more.

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>
________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post