[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: MIT AD Trust PAC handling

To: "Markus Moeller" <huaraz@moeller.plus.com>
Subject: Re: MIT AD Trust PAC handling
From: Michael B Allen <miallen@ioplex.com>
Date: Tue, 11 Dec 2007 21:38:22 -0500
Cc: heimdal-discuss@sics.se
In-Reply-To: <fjn2i7$3o1$1@ger.gmane.org>
List-Archive: <http://list.sics.se/sympa/arc/heimdal-discuss>
List-Help: <mailto:sympa@sics.se?subject=help>
List-Id: <heimdal-discuss.sics.se>
List-Owner: <mailto:heimdal-discuss-request@sics.se>
List-Post: <mailto:heimdal-discuss@sics.se>
List-Subscribe: <mailto:sympa@sics.se?subject=subscribe%20heimdal-discuss>
List-Unsubscribe: <mailto:sympa@sics.se?subject=unsubscribe%20heimdal-discuss>
Organization: IOPLEX Software
References: <fh08tb$qk5$1@ger.gmane.org><fjc88n$8tk$1@ger.gmane.org><03A7ED3C-357C-402A-AB68-BA564F407F9F@kth.se><fjgo8k$5hm$1@ger.gmane.org><20071210225810.01ffa1db.miallen@ioplex.com><fjn2i7$3o1$1@ger.gmane.org>
Reply-To: heimdal-discuss@sics.se, Michael B Allen <miallen@ioplex.com>

On Tue, 11 Dec 2007 22:21:48 -0000
"Markus Moeller" <huaraz@moeller.plus.com> wrote:

> I guess they need to change some realm details inside the PAC.

I don't think that's it. The PAC signatures don't require any intelligence
about the content.

I think it's more likely that the wrong algorithm is being used resulting
in a bad checksum key.

This is all wild speculation of course :-)

Mike

-- 
Michael B Allen
PHP Active Directory SPNEGO SSO
http://www.ioplex.com/

References:
- Re: Difference in handling SPNEGO tokens between heimdal 0.7.2 , 0.8.1 and 1.0.1
  - From: "Markus Moeller" <huaraz@moeller.plus.com>
- Re: Difference in handling SPNEGO tokens between heimdal 0.7.2 , 0.8.1 and 1.0.1
  - From: Love Hörnquist Åstrand <lha@kth.se>
- Re: Difference in handling SPNEGO tokens between heimdal 0.7.2 , 0.8.1 and 1.0.1
  - From: "Markus Moeller" <huaraz@moeller.plus.com>
- MIT AD Trust PAC handling
  - From: Michael B Allen <miallen@ioplex.com>
- Re: MIT AD Trust PAC handling
  - From: "Markus Moeller" <huaraz@moeller.plus.com>

Prev by Date: Re: heimdal 1.0.2RC6
Next by Date: Re: heimdal 1.0.2RC6
Prev by thread: Re: MIT AD Trust PAC handling
Next by thread: Re: aes256 keys not supported
Index(es):
- Date
- Thread