rpms / krb5

Clone
Source Code
GIT

2da8874 Change back dns_lookup_kdc to the default

1 file Authored by stefw 12 years ago, Committed by nalin 12 years ago,
raw patch tree parent
1 file changed. 0 lines added. 1 lines removed.
krb5.conf
file modified
+0 -1 
    Change back dns_lookup_kdc to the default
    
    The specifications recommend against using TXT records to mapping
    hostnames to realms. However they do not recommend against using
    SRV records to lookup the KDC.
    
    Change back to the MIT default of enabling DNS for KDC lookup.
    This allows automatic configuration and failover.
    
    A theoretical attack involving SRV records could be similarly
    accomplished by a similar attack involving the A records for
    the KDC hosts.
file modified
+0 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.