[1875] in Kerberos_V5_Development


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: bug in the rfc and in the kdc

daemon@ATHENA.MIT.EDU (Marc Horowitz)
Fri Oct 25 01:40:32 1996

Cc: krbdev@MIT.EDU
In-Reply-To: Your message of "24 Oct 1996 22:33:22 EDT."
             <t53vibz4vt9.fsf@rover.cygnus.com> 
Date: Fri, 25 Oct 1996 01:39:58 EDT
From: Marc Horowitz <marc@MIT.EDU>

In message <t53vibz4vt9.fsf@rover.cygnus.com>, Marc Horowitz <marc@cygnus.com> writes:

>> The "sub-session key from the Authenticator" is exactly what is
>> referenced by the kdc implementation when verifying the checksum in
>> the KDC-REQ.  So, in our implementation, this key must be present, or
>> the kdc will core dump (hmm). The RFC says that this field in the
>> request is OPTIONAL.

Ok, this is wrong; the key in the ticket is used to verify the
checksum.  (Which key should be used for this is not specified; this
is another bug in the rfc.)

But the rest of the message stands.

		Marc


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[1875] in Kerberos_V5_Development

Re: bug in the rfc and in the kdc

daemon@ATHENA.MIT.EDU (Marc Horowitz)Fri Oct 25 01:40:32 1996

daemon@ATHENA.MIT.EDU (Marc Horowitz)
Fri Oct 25 01:40:32 1996