Hi, I have a basic question about kerberos concept. As I browsed through MIT source code to better understand how kerberos works, I noticed that in processing the tgs request, the ticket is always decrypted using server's key retrieved from keytab. If the server is a TGS service (krbtgt) or kadmin/changepw which are part of a KDC (am I right to say this ?), is it okay to retrieve the key from the database instead of from the keytab ?
Does a KDC need to maintain a keytab actually ? thank you, lara ===== ------------------------------------------------------------------------------------ La vie, voyez-vous, ca n'est jamais si bon ni si mauvais qu'on croit - Guy de Maupassant - ------------------------------------------------------------------------------------ __________________________________ Do you Yahoo!? Y! Messenger - Communicate in real time. Download now. http://messenger.yahoo.com ________________________________________________ Kerberos mailing list [EMAIL PROTECTED] https://mailman.mit.edu/mailman/listinfo/kerberos