[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: compiling of ssh

To: Assar Westerlund <assar@sics.se>
Subject: Re: compiling of ssh
From: Ken Hornstein <kenh@cmf.nrl.navy.mil>
Date: Sun, 08 Nov 1998 01:13:52 -0500
cc: heimdal-discuss@sics.se
In-reply-to: Your message of "07 Nov 1998 15:55:27 +0100." <5llnlnsgbk.fsf@assaris.pdc.kth.se>
Sender: owner-heimdal-discuss@sics.se

>It look like it's
>
>krb5_error_code
>krb5_fwd_tgt_creds(krb5_context context,
>		   krb5_auth_context auth_context,
>		   int foo,
>		   krb5_principal client,
>		   krb5_principal server,
>		   krb5_ccache ccache,
>		   int bar,
>		   krb5_data *outbuf);
>
>where it's unclear to me what `foo' and `bar' are.

It's actually:

krb5_error_code krb5_fwd_tgt_creds
        KRB5_PROTOTYPE((krb5_context, 
                        krb5_auth_context,
                        char *foo,
                        krb5_principal, 
                        krb5_principal, 
                        krb5_ccache,
                        int forwardable,
                        krb5_data *));  

char *foo is the machine you want these tickets to be forwarded to.

>In Heimdal (and MIT Kerberos I believe) there's a function

No, this doesn't exist in MIT Kerberos (at least, not 1.0.5).

>I'm not sure as to what's the difference between these two.  If you
>can tell me that I can implement krb5_fwd_tgt_creds in Heimdal.

I think the only difference is the "forwardable" argument.  In MIT
Kerberos, if this is set to true then the credentials themselves will
be forwardable again on the remote machine.

(Geez, I sure hope I haven't violated any export restrictions :-/).

--Ken

Follow-Ups:
- Re: compiling of ssh
  - From: Assar Westerlund <assar@sics.se>

References:
- Re: compiling of ssh
  - From: Assar Westerlund <assar@sics.se>

Prev by Date: Re: compiling of ssh
Next by Date: Re: compiling of ssh
Prev by thread: Re: compiling of ssh
Next by thread: Re: compiling of ssh
Index(es):
- Date
- Thread