[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Kerberos decryption and Ethereal, help requested

To: "Ronnie Sahlberg" <ronnie_sahlberg@ozemail.com.au>
Subject: Re: Kerberos decryption and Ethereal, help requested
From: Love <lha@stacken.kth.se>
Date: Tue, 24 Feb 2004 05:50:11 +0100
Cc: <heimdal-discuss@sics.se>
In-Reply-To: <011501c3fa4d$5f251f40$6401010a@C5043436> (Ronnie Sahlberg'smessage of "Tue, 24 Feb 2004 07:41:10 +1100")
References: <005801c3f927$ea3b6e30$6401010a@C5043436><amishyalai.fsf@nutcracker.stacken.kth.se><011501c3fa4d$5f251f40$6401010a@C5043436>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.1006 (Gnus v5.10.6) Emacs/21.3 (berkeley-unix)

"Ronnie Sahlberg" <ronnie_sahlberg@ozemail.com.au> writes:

> A question:
> Your example code decrypts the encrypted data inside the Ticket inside the
> TGS-REP packet.
> Your example code specifies usage==2.
>
> Is usage always 2 when decrypting the blob inside a ticket or is usage only
> 2 when decrypted this blob inside a ticket inside a TGS-REP pdu?
>
> How do I figure out what usage should be?
> (I was told it was the MSG Type but that was apparently incorrect)

The keyusage is diffrent for diffrent encrypted blobs. See section 7.5.1 in
draft-ietf-krb-wg-kerberos-clarifications-05.txt for when they are used.

> Second question,   can someone point me to where in the sources I can find
> either the ASN.1 descriptions or the code handling the
> ASN.1/BER data in the decrypted blob?
> I.e. now that I have the ASN.1 encoded data, where do I find out WHAT this
> data is?

Its all in rfc1510 or kerberos-clarifications, I recommend the later. I
think you are looking for the structure named EncKDCRepPart.

BTW kerberos is ASN.1/DER, but that will make little diffrence for you as
you are only decoding.

Love

PGP signature

Follow-Ups:
- Re: Kerberos decryption and Ethereal, help requested
  - From: "Ronnie Sahlberg" <ronnie_sahlberg@ozemail.com.au>
- Re: Kerberos decryption and Ethereal, help requested
  - From: "Ronnie Sahlberg" <ronnie_sahlberg@ozemail.com.au>

References:
- Kerberos decryption and Ethereal, help requested
  - From: "Ronnie Sahlberg" <ronnie_sahlberg@ozemail.com.au>
- Re: Kerberos decryption and Ethereal, help requested
  - From: "Ronnie Sahlberg" <ronnie_sahlberg@ozemail.com.au>

Prev by Date: Re: Kerberos decryption and Ethereal, help requested
Next by Date: Re: [OpenAFS-devel] Re: setpag switch for afslog?
Prev by thread: Re: Kerberos decryption and Ethereal, help requested
Next by thread: Re: Kerberos decryption and Ethereal, help requested
Index(es):
- Date
- Thread