Jelmer Vernooij <jel...@samba.org> writes: > I agree kstash shouldn't crash on an empty password - I've filed an > upstream bug report about that. That's orthogonal though - even if that > would work, setting an empty master key password is suboptimal.
It's never been clear to me why you would ever care to have a known master key password, as opposed to just using kstash --random-key. The only reason I can think of would be to recover the Kerberos KDC database when you have a copy of the database but not the master key, but I'm not sure why you would be in that state. It's just as easy to back up the master key file along with the database. I suppose it lets you treat the KDC database as an encrypted backup that's useless without a separately stored key, but personally I'd just encrypt the backups with a separate backup key if you're aiming for that, rather than trust in encryption with the master key. Particularly since most people will pick rather bad master key passwords. -- Russ Allbery (r...@debian.org) <http://www.eyrie.org/~eagle/> -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
