Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83]) by krbdev.mit.edu (8.9.3) with ESMTP id OAA29146; Tue, 10 Dec 2002 14:51:20 -0500 (EST) Received: from konishi-polis.mit.edu (KONISHI-POLIS.MIT.EDU [18.18.3.10]) by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id OAA09327 for ; Tue, 10 Dec 2002 14:51:19 -0500 (EST) Received: by konishi-polis.mit.edu (Postfix, from userid 8042) id 1FA5515216E; Tue, 10 Dec 2002 14:51:12 -0500 (EST) To: krb5-bugs@mit.edu Subject: kadmin should gain option to remove old keys from keytab Message-Id: <20021210195112.1FA5515216E@konishi-polis.mit.edu> Date: Tue, 10 Dec 2002 14:51:12 -0500 (EST) From: hartmans@MIT.EDU (Sam Hartman) X-RT-Original-Encoding: iso-8859-1 Content-Length: 272 The ktrem old option seems to remove all but the most recent key. It would be nice if it had an option to remove all keys that have are neither current nor added within some period of time, so you could rekey and remove keys that will not be used for current tickets.