[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Heimdal / MS kpasswd differences?

To: Michael B Allen <mba2000@ioplex.com>
Subject: Re: Heimdal / MS kpasswd differences?
From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
Date: Tue, 12 Sep 2006 15:33:33 -0700
Cc: ronnie sahlberg <ronniesahlberg@gmail.com>, Heimdal-discuss list <heimdal-discuss@sics.se>, Love Hörnquist Åstrand <lha@kth.se>
In-Reply-To: <36A01FED-0AEF-471C-8276-8ACAC0532D37@kth.se>
References: <20060902230731.1d19f129.mba2000@ioplex.com> <c9a3e4540609022204l733907fdud7d9a5cd66fdaa0b@mail.gmail.com> <20060903115243.0e55d34f.mba2000@ioplex.com> <c9a3e4540609031551g697c1e2dofa678de644b2601a@mail.gmail.com> <20060903195540.04970a3a.mba2000@ioplex.com> <36A01FED-0AEF-471C-8276-8ACAC0532D37@kth.se>
Sender: owner-heimdal-discuss@sics.se


On Sep 4, 2006, at 12:38 AM, Love Hörnquist Åstrand wrote:

>
> 4 sep 2006 kl. 01.55 skrev Michael B Allen:
>
>> On Mon, 4 Sep 2006 08:51:04 +1000
>> "ronnie sahlberg" <ronniesahlberg@gmail.com> wrote:
>>
>>> what client are you using?  I have never seen a client before  
>>> that reuses
>>> the same clientside port between both krb5 and kpasswd
>>
>> I see. So you just need to look a little deeper before picking a  
>> decoder.
>>
>> The client is stock Heimdal kpasswd 0.7.2. I'm using mechglue branch
>> with some minor modifications but I don't think there's anything that
>> could affect what UDP port is being used. I'd say that's normal  
>> Heimdal
>> behavior unless Love says otherwise.
>
> I think that is not normal behavior, I just tried it out on my mac  
> and tcpdump tells me this.
>
> 09:34:13.075186 IP hummel.it.su.se.65065 > pal.su.se.kerberos:  v5
> 09:34:13.078695 IP pal.su.se.kerberos > hummel.it.su.se.65065:  v5
> 09:34:26.126523 IP hummel.it.su.se.65068 > pal.su.se.kpasswd: UDP,  
> length: 610
> 09:34:26.168186 IP pal.su.se.kpasswd > hummel.it.su.se.65068: UDP,  
> length: 274
> 09:34:26.273385 IP hummel.it.su.se.65071 > pal.su.se.kpasswd: UDP,  
> length: 576
> 09:34:26.310696 IP pal.su.se.kpasswd > hummel.it.su.se.65071: UDP,  
> length: 274
>
> Love

Reusing ephemeral ports would be OS dependent and probably also  
depends on the time interval between the two exchanges, *and* *also*  
might depend on whether it's the same program/task doing the two  
exchanges.  Don't think it's recommended to *depend* on ephemeral  
port numbers always being different.
------------------------------------------------------------------------ 
----
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz@jpl.nasa.gov, or hbhotz@oxy.edu

References:
- Heimdal / MS kpasswd differences?
  - From: Michael B Allen <mba2000@ioplex.com>
- Re: Heimdal / MS kpasswd differences?
  - From: "ronnie sahlberg" <ronniesahlberg@gmail.com>
- Re: Heimdal / MS kpasswd differences?
  - From: Michael B Allen <mba2000@ioplex.com>
- Re: Heimdal / MS kpasswd differences?
  - From: "ronnie sahlberg" <ronniesahlberg@gmail.com>
- Re: Heimdal / MS kpasswd differences?
  - From: Michael B Allen <mba2000@ioplex.com>
- Re: Heimdal / MS kpasswd differences?
  - From: Love Hörnquist Åstrand <lha@kth.se>

Prev by Date: Re: 8-bit ASCII password?
Next by Date: Password expiration patch
Prev by thread: Re: Heimdal / MS kpasswd differences?
Next by thread: No Subject
Index(es):
- Date
- Thread