On Fri, Jun 26, 2015 at 1:06 AM, Amos Jeffries wrote:
> * HTTP is designed to contain multiple TCP connection "hops". The common
> Internet scenario is 2-3 hops, maybe more. On a centrally controlled LAN
> or large enterprise multi-POP network there may be 2 hops.
>
> * HTTP itself is stateless. I
Some clarifications about HTTP auth interactions inline...
On 26/06/2015 8:44 a.m., Michael B Allen wrote:
> Pls beware, I'm copying ietf-http-wg at w3.org so please remove one or
> the other addresses (or both!) when replying if necessary. Not sure
> about cross posting netiquette these days but
Hi,
On Thu, Jun 25, 2015 at 11:43 PM, Michael B Allen wrote:
> Pls beware, I'm copying ietf-http-wg at w3.org so please remove one or
> the other addresses (or both!) when replying if necessary. Not sure
> about cross posting netiquette these days but this has become more
> about HTTP authenticat
Pls beware, I'm copying ietf-http-wg at w3.org so please remove one or
the other addresses (or both!) when replying if necessary. Not sure
about cross posting netiquette these days but this has become more
about HTTP authentication (non-Enterprise points at the end) now than
it is about Kerberos.
Just a couple additions and corrections (inline).
On Wed, 24 Jun 2015, Michael B Allen wrote:
> On Wed, Jun 24, 2015 at 2:07 PM, Albert C. Baker III
> wrote:
> > I am using the Java class org.apache.hadoop.security.
> > authentication.server.AuthenticationFilter from Apache
> > Hadoop 2.5.0 as
On Wed, Jun 24, 2015 at 2:07 PM, Albert C. Baker III wrote:
> I am using the Java class org.apache.hadoop.security.
> authentication.server.AuthenticationFilter from Apache
> Hadoop 2.5.0 as a filter in front of a Tomcat 6 Servlet we
> wish to add Kerberos authentication to.
>
> I am attempting to
> From: kerberos-boun...@mit.edu [mailto:kerberos-boun...@mit.edu] On Behalf
> Of Albert C. Baker III
> Sent: Wednesday, June 24, 2015 8:08 PM
> To: kerberos@mit.edu
> Subject: Kerberos Authentication question(s)
> [...]
> Any leads on how to figure this out would be gre
I am using the Java class org.apache.hadoop.security.
authentication.server.AuthenticationFilter from Apache
Hadoop 2.5.0 as a filter in front of a Tomcat 6 Servlet we
wish to add Kerberos authentication to.
I am attempting to write some test cases against this filter
so that we have a better u
Hi all,
I've created 1,000+ KDC accounts, each one having a ticket life of 1 minute. I left it overnight with three clients logged in, and when I checked the krb5kdc.log this morning, I see the TGS and AS requests coming through every SECOND for those three accounts.
Do you know why the KDC would b