[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slurpd with SASL

To: lukeh@PADL.COM
Subject: Re: slurpd with SASL
From: wesley.craig@umich.edu
Date: Wed, 09 Aug 2000 22:48:11 -0400
Cc: kurt@OpenLDAP.org, adamson@andrew.cmu.edu, openldap-devel@OpenLDAP.org
In-reply-to: Your message of "Thu, 10 Aug 2000 09:17:14 +1000." <200008092317.JAA66321@au.padl.com>

> From:    Luke Howard <lukeh@PADL.COM>
> To:      kurt@OpenLDAP.org

> One thing we found when Kerberizing NetInfo (many years ago,
> mind you) is that the Kerberos client libraries didn't provide
> a mechanism to refresh the credentials cache (similar
> circumstances: NetInfo was acting as a Kerberos V client
> for repliation purposes).

This fact makes kerberized slurpd ineffective if we have to run it
under reauth or the like.  I've found for the most part that kerberized
applications need knowledge of the underlying authentication
architecture.  Now functional way around it.

:wes

References:
- Re: slurpd with SASL
  - From: Luke Howard <lukeh@PADL.COM>

Prev by Date: Re: slurpd with SASL
Next by Date: Does OpenLDAP support clustering?
Index(es):
- Chronological
- Thread