Martin Kuhne mkuhne at
Fri Sep 29 18:38:05 GMT 2000

(1) I was responding to a post that claims MS messed up kerberos. This is
simply not true, MS kerberos is rfc compliant plus all the changes now have
been documented for everyone to review.

(2) I was not referring to the legal issues you are detailing below and I am
truly sorry if I have been unclear.

-----Original Message-----
From: Jeremy Allison [mailto:jeremy at]
Sent: Friday, September 29, 2000 7:00 PM
To: Martin Kuhne
Cc: 'Mike Brodbelt'; Cole, Timothy D.; Samba NT Domains Mailing List
Subject: Re: TNG-stable

Martin Kuhne wrote:
> This is a myth. See
> (including the PAC specs)

I'm sorry Martin, it is not a myth. The full PAC interoperability
information is only available via clicking on a *very* obnoxious
"I agree to not implement this" click through license. 

Microsoft have sent legal letters to the slashdot site (run by my employer,
VA Linux Systems) demaning they remove postings giving out this information
without the license. This remains unresolved.

Currently the PAC format is considered a "trade secret" under
US law and this is in a legal limbo (not tested in court).

I can get full details from Ted Tso (one of the MIT Kerberos
developers now working at VA Linux) and get a more official
post if you require.

But this interoperability issue is *very* alive and is currently
being fought tooth and nail by Microsoft (in the USA at least).


	Jeremy Allison,
	Samba Team.

Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.

More information about the samba-ntdom mailing list