[31547] in Kerberos
Re: kinit-1.7: wrong passwords lock active directory accounts
daemon@ATHENA.MIT.EDU (Greg Hudson)
Wed Oct 7 18:23:00 2009
From: Greg Hudson <ghudson@mit.edu>
To: "mark@mproehl.net" <mark@mproehl.net>
In-Reply-To: <4ACCA005.9050605@mproehl.net>
Date: Wed, 07 Oct 2009 15:05:50 -0400
Message-Id: <1254942350.9616.116.camel@ray>
Mime-Version: 1.0
Cc: "kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
An update: this turns out to be a known bug in krb5 1.7, which simply
hadn't percolated into my conscience from the bug data.
I can't offer you a runtime workaround (there aren't a lot of
configuration knobs affecting client preauth), but I expect to fix it
for a forthcoming 1.7.x release. I can offer you a code workaround if
you're in a position to recompile the client code.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
