[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Password Reuse

To: heimdal-discuss@sics.se
Subject: Password Reuse
From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
Date: Fri, 10 Oct 2003 15:29:02 -0700
In-Reply-To: <am7k3ftsqu.fsf@nutcracker.stacken.kth.se>
References: <Pine.LNX.4.58.0310071051000.27204@iris02.slac.stanford.edu><Pine.LNX.4.58.0310081349470.21367@fuchur.ifh.de><p05210601bba9e7ed2c60@[137.78.212.225]><am7k3ftsqu.fsf@nutcracker.stacken.kth.se>
Sender: owner-heimdal-discuss@sics.se

Is there a good way to prevent password reuse with Heimdal?  MIT has 
a policy for it.  Heimdal has a user hook where it *could* be 
implemented externally.

Not sure the user hook is ideal since I think it's only called in 
advance and wouldn't know if the change failed later.  I.e. a user 
could try to change a password and it fails (after the user hook) due 
to some transient disk problem (for example).  User gets stuck with 
the old password and can't use his desired new one either, true?  I'm 
also not looking forward to writing the code myself.
-- 
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz@jpl.nasa.gov, or hbhotz@oxy.edu

References:
- Converting kaserver DB to Heimdal
  - From: Alf Wachsmann <alfw@SLAC.Stanford.EDU>
- Re: Converting kaserver DB to Heimdal
  - From: Andreas Haupt <ahaupt@ifh.de>
- Re: Converting kaserver DB to Heimdal
  - From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
- Re: Converting kaserver DB to Heimdal
  - From: Love <lha@stacken.kth.se>

Prev by Date: Re: Found some strange code
Next by Date: Re: Found some strange code
Prev by thread: Re: Converting kaserver DB to Heimdal
Next by thread: Found some strange code
Index(es):
- Date
- Thread