CVS update: samba/source
Gerald (Jerry) Carter
jerry at samba.org
Sun Nov 11 06:42:24 GMT 2001
On Sun, 11 Nov 2001 abartlet at samba.org wrote:
> This code is vunerable to a spoofed KDC, and is best replaced by
> --with-pam and the pam_krb5 module. This module includes measures to
> prevent such spoofing.
We'll see if anyone yells. Please announce this on Samba at samba.org.
This does mean that non-PAM servers will not be able to authenticate
non-Win2k clients against a Kerberos KDC, right?
Thanks.
cheers, jerry
---------------------------------------------------------------------
www.samba.org SAMBA Team jerry_at_samba.org
www.plainjoe.org jerry_at_plainjoe.org
http://www.hp.com Hewlett-Packard
--"I never saved anything for the swim back." Ethan Hawk in Gattaca--
More information about the samba-technical
mailing list