On 08/04/2011 10:59 AM, Ondrej Valousek wrote:
>
>
> On 04.08.2011 16:53, Dmitri Pal wrote:
>> Yes but server can indicate in some attribute to the client that it is
>> time to start doing this and the client will do the change.
>>
> Would not be just easiest to steal some code from winbind? It is
On 04.08.2011 16:53, Dmitri Pal wrote:
Yes but server can indicate in some attribute to the client that it is
time to start doing this and the client will do the change.
Would not be just easiest to steal some code from winbind? It is doing the same thing for Samba right? I guess it should not
On 08/04/2011 10:47 AM, Simo Sorce wrote:
> On Thu, 2011-08-04 at 10:43 -0400, Dmitri Pal wrote:
>> On 08/04/2011 10:28 AM, Simo Sorce wrote:
>>> On Thu, 2011-08-04 at 10:25 -0400, Dmitri Pal wrote:
On 08/04/2011 03:52 AM, Ondrej Valousek wrote:
> On 03.08.2011 23:52, Dmitri Pal wrote:
>
I agree with Simo, I would expect this from sssd instead, also given the fact that sssd will in future also handle winbind's "net *"
commands, this seems to me like a most natural way...
Ondrej
On 04.08.2011 16:28, Simo Sorce wrote:
SSSD is probably a more appropriate component for keytabs, gi
On Thu, 2011-08-04 at 10:43 -0400, Dmitri Pal wrote:
> On 08/04/2011 10:28 AM, Simo Sorce wrote:
> > On Thu, 2011-08-04 at 10:25 -0400, Dmitri Pal wrote:
> >> On 08/04/2011 03:52 AM, Ondrej Valousek wrote:
> >>> On 03.08.2011 23:52, Dmitri Pal wrote:
> But this has not been even filed as an
On 08/04/2011 10:28 AM, Simo Sorce wrote:
> On Thu, 2011-08-04 at 10:25 -0400, Dmitri Pal wrote:
>> On 08/04/2011 03:52 AM, Ondrej Valousek wrote:
>>> On 03.08.2011 23:52, Dmitri Pal wrote:
But this has not been even filed as an enhancement as no one cared about
such functionality until
On Thu, 2011-08-04 at 10:25 -0400, Dmitri Pal wrote:
> On 08/04/2011 03:52 AM, Ondrej Valousek wrote:
> >
> > On 03.08.2011 23:52, Dmitri Pal wrote:
> > > But this has not been even filed as an enhancement as no one cared about
> > > such functionality until now.
> > >
> > > What is your use ca
On 08/04/2011 03:52 AM, Ondrej Valousek wrote:
>
> On 03.08.2011 23:52, Dmitri Pal wrote:
>> But this has not been even filed as an enhancement as no one cared about
>> such functionality until now.
>>
>> What is your use case for this functionality?
> Actually, I do not need such a functionality.
On 03.08.2011 23:52, Dmitri Pal wrote:
But this has not been even filed as an enhancement as no one cared about
such functionality until now.
What is your use case for this functionality?
Actually, I do not need such a functionality. I was asking because I know
Windows rotate keytabs so I was
On 08/03/2011 07:44 AM, Simo Sorce wrote:
>> I have some questions regarding IPA:
>> > 1. On the IPA client side, which daemon is looking after machine
>> > Kerberos host/ principal renewal?
> Keytabs are random secrets and do not need to expire as cracking them is
> consider a problem
On Wed, 2011-08-03 at 10:22 +0200, Ondrej Valousek wrote:
> Hi List,
>
> I have some questions regarding IPA:
> 1. On the IPA client side, which daemon is looking after machine
> Kerberos host/ principal renewal?
Keytabs are random secrets and do not need to expire as cracking them i
11 matches
Mail list logo