Wyllys Ingersoll wrote: > Customers are asking for the functionality that currently exists in the MIT > kerberos code that allows for one to run kerberos and have the replay cache > functionality disabled. Currently that is not possible, the only two choices
Why do they want that functionality ? What is wrong with the reply cache that means they desire to disable it and take the security risks associated with doing so ? I want to work out if disabling this is actually fixing the real problem or just masking some other issue. -- Darren J Moffat
