[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Kerberos V and xdm

To: Mark Davies <mark@MCS.VUW.AC.NZ>
Subject: Re: Kerberos V and xdm
From: Miroslav Ruda <ruda@ics.muni.cz>
Date: Thu, 27 Sep 2001 10:44:06 +0200 (CEST)
CC: "David S." <davids@idiom.com>, netbsd-users@netbsd.org, heimdal-discuss@sics.se
In-Reply-To: <200109270125.f8R1PX928514@city-art.mcs.vuw.ac.nz> from Mark Daviesat "Sep 27, 2001 01:25:33 pm"
Sender: owner-heimdal-discuss@sics.se

Mark Davies wrote:
> > In operation, the program will first try to authenticate a user against
> > the Unix password database.  Failing that, it tries Kerberos, and, with
> > success there, will issue tickets.
> 
> I'm curious why the tests are in that order (the heimdal telnetd also does 
> these tests in that order).  If you have a user that has the same password in 
> the local unix passwd file and in kerberos they don't get tickets issued.

It seems very reasonable to me, at least to avoid network problems (you can 
login using local password without timeout/other problems), to avoid test
for accounts which should not be tested agains Kerberos (root, ...).

             Mirek Ruda

Follow-Ups:
- Re: Kerberos V and xdm
  - From: Mark Davies <mark@MCS.VUW.AC.NZ>

References:
- Re: Kerberos V and xdm
  - From: Mark Davies <mark@MCS.VUW.AC.NZ>

Prev by Date: Re: Kerberos V and xdm
Next by Date: Re: Kerberos V and xdm
Prev by thread: Re: Kerberos V and xdm
Next by thread: Re: Kerberos V and xdm
Index(es):
- Date
- Thread