[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: patch to gssapi server authentication to accept any server
|
From: |
Assar Westerlund |
|
Subject: |
Re: patch to gssapi server authentication to accept any server |
|
Date: |
24 Feb 2001 02:59:59 +0100 |
|
User-agent: |
Gnus/5.070098 (Pterodactyl Gnus v0.98) Emacs/20.6 |
"Derek R. Price" <address@hidden> writes:
> > Not at all. Before, you had to have a key for address@hidden(), but
> > now any key stored in /etc/krb5.keytab can be used for
> > authentication. What worked before still works, and it is simpler for
> > people with multihomed servers and such.
>
> Might this be perceived as a loss of functionality to some people, or
> perhaps less secure?
I don't see how it could be seen as a loss of functionality. It might
however, for some people be seen as a change in functionality. I've
cooked up a new patch that should even make those picky people happy.
Instead of only accepting authentication for address@hidden() which
was the old way it now accepts authentication for any address@hidden This
should make things work for multi-homed servers and not change the
functionality in any perceived way. Any comments on this patch?
/assar
cvs.diff2
Description: Text document