kerberos custom credential cache
slushpupie at gmail.com
Tue Sep 26 13:08:47 EDT 2006
On 9/26/06, J. Bruce Fields <bfields at fieldses.org> wrote:
> Currently all gssd gets is a uid, and it must somehow find the
> credential cache from that uid--it knows nothing else about who
> requested the gss context or why.
>
> As long as you have a way to find the credential cache from the uid, the
> rest should be a simple matter of programming....
Hmm.. Thats a problem with my cache type. I suppose I can work around
it for now, but is there anything being thought of that can provide
more granular access? Perhaps something like the AFS PAG?
> > Also, our site uses aes256 keys for everything, so I would like to
> > investigate what might be needed to support encryption types other
> > than single des, specifically types 16-18. Has anyone looked into
> > this?
>
> Yes, I'm working on it right now, but it may take some time.
Is there anything I can do to assist the effort?
Jay
--
Jay Kline
http://www.slushpupie.com/
More information about the NFSv4
mailing list