[20304] in Kerberos_V5_Development
Re: Not building kcpytkt/kdeltkt
daemon@ATHENA.MIT.EDU (Andrew Bartlett)
Mon Aug 2 23:19:24 2021
Message-ID: <cfe1b24ea6affd6a5861e517c28d631f78986938.camel@samba.org>
From: Andrew Bartlett <abartlet@samba.org>
To: Sam Hartman <hartmans@debian.org>, Ken Hornstein <kenh@cmf.nrl.navy.mil>,
krbdev@mit.edu
Date: Tue, 03 Aug 2021 15:19:04 +1200
In-Reply-To: <0100017b09f47cbc-0d47c526-2e2f-4c35-8ee3-e9afd0ad6ea3-000000@email.amazonses.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: krbdev-bounces@mit.edu
On Tue, 2021-08-03 at 03:00 +0000, Sam Hartman wrote:
> > > > > > "Ken" == Ken Hornstein <kenh@cmf.nrl.navy.mil> writes:
>
> There was some internal discussion back in 2004.
> The utilities were written to exercise new Windows functionality, and
> no
> one even talked about exposing them on other platforms.
> My recollection after rereading that discussion is that we could see
> why
> you might want to delete a ticket from the LSA: deleting the entire
> LSA
> ccache seemed kind of like a big deal on Windows, and you might want
> to
> be able to delete a ticket to force that ticket to be retrieved again
> or simply to remove it.
>
> But I don't think anyone particularly thought of use cases for other
> platforms at the time.
That's the use case of the underlying API in Samba. As per the link
Samba had trouble with having tickets to servers that has been rebuilt
under the same name (re-joining a DC in particular) that we wanted to
force a re-fetch of tickets for.
Andrew Bartlett
--
Andrew Bartlett (he/him) https://samba.org/~abartlet/
Samba Team Member (since 2001) https://samba.org
Samba Team Lead, Catalyst IT https://catalyst.net.nz/services/samba
Samba Development and Support, Catalyst IT - Expert Open Source
Solutions
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
