Hi,
I have a basic question about kerberos concept.
As I browsed through MIT source code to better
understand how kerberos works, I noticed that in
processing the tgs request, the ticket is always
decrypted using server's key retrieved from keytab. If
the server is a TGS service (krbtgt) or
kadmin/changepw which are part of a KDC (am I right to
say this ?), is it okay to retrieve the key from the
database instead of from the keytab ?
Does a KDC need to maintain a keytab actually ?
thank you,
lara
=====
------------------------------------------------------------------------------------
La vie, voyez-vous, ca n'est jamais si bon ni si mauvais qu'on croit
- Guy de
Maupassant -
------------------------------------------------------------------------------------
__________________________________
Do you Yahoo!?
Y! Messenger - Communicate in real time. Download now.
http://messenger.yahoo.com
________________________________________________
Kerberos mailing list [EMAIL PROTECTED]
https://mailman.mit.edu/mailman/listinfo/kerberos
