Russ Allbery wrote: > "Douglas E. Engert" <[EMAIL PROTECTED]> writes: > >> From a Kerberos prospective both could be correct. Using the process ID >> as part of the cache name allows for session based credentials, so each >> telnet session has its own cache. > > telnetd should include both the UID and the PID in the cache name. This > works much more smoothly with rpc.gssd and is what I do in pam-krb5.
OK that works too. But I thought the main problem as stated in the note was that the rpc.gssd could not read the environment of the process, and thus alway defaulted to using the default ticket cache. This is the same set if issues I have with Nico about session vs user based caches. > -- Douglas E. Engert <[EMAIL PROTECTED]> Argonne National Laboratory 9700 South Cass Avenue Argonne, Illinois 60439 (630) 252-5444 ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
