[prev in list] [next in list] [prev in thread] [next in thread]
List: krbdev
Subject: Re: kadmind: password history interaction with keepold
From: Greg Hudson <ghudson () MIT ! EDU>
Date: 2014-08-15 13:52:49
Message-ID: 53EE10B1.8050803 () mit ! edu
[Download RAW message or body]
On 07/23/2014 08:37 AM, Tomas Kuthan wrote:
> I have ran into a corner case and I am not really sure if the behavior
> in the back-end agnostic code is correct with respect to use of -keepold
> option with principals with password history.
> In my opinion, with -keepold, old keys are retained in password history
> for too long.
Sorry, I missed this message somehow. I agree completely; only the most
recent kvno should be stored in the history record.
_______________________________________________
krbdev mailing list krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic