[32949] in Kerberos
Re: Admin SRV RR support
daemon@ATHENA.MIT.EDU (Jaap Winius)
Fri Dec 3 09:19:42 2010
From: Jaap Winius <jwinius@umrk.nl>
MIME-Version: 1.0
Date: 03 Dec 2010 01:29:26 GMT
Message-ID: <4cf847f6$0$4543$e4fe514c@dreader18.news.xs4all.nl>
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Thu, 02 Dec 2010 19:36:24 -0500, Greg Hudson wrote:
> A little more investigation indicates that we use _kerberos-adm SRV
> records for password changes, but not for the kadmin client.
For password changes? I would have expected that to be:
_kpasswd._udp
... although the kpasswd5 service is also available on tcp port 464. In
contrast, the kerberos-adm service is on tcp port 749.
> I don't know if this is a particularly strong driver of implementation
> choice as you suggest, but I'll make a note to try to implement this for
> 1.10.
That would be great! This particular RR is mentioned in more than a few
publications and its availability will make it unnecessary to maintain
any server references in /etc/krb5.conf at all.
Thanks, Greg!
Cheers,
Jaap
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
