On Wed, Aug 09, 2017 at 03:06:37PM -0400, Roland C. Dowdeswell wrote: > It appears that Heimdal 1.5 had incorrect behaviour. The ccache code > should skip expired credentials when finding service tickets. This looks > like it was fixed by the following commit: > > commit 0f1ae2d10186afb654df8f50cc78663eb53f27a9 > Author: Nicolas Williams <n...@cryptonector.com> > Date: Fri Aug 2 18:55:36 2013 -0500 > > Use KRB5_TC_MATCH_TIMES when looking for creds > > So, if you upgrade, this issue will be resolved.
Ahh, I should have recalled that I'd fixed that... Thanks for finding that.