Subject: | kdb5_util update_princ_encryption uses latest mkey instead of active mkey |
Another bug which Tom found, and I've investigated a little bit:
1. kdb5_util add_mkey -s
2. kdb5_util update_princ_encryption
The second command updates all of the principles to the new key even
though it hasn't been activated with use_mkey yet.
1. kdb5_util add_mkey -s
2. kdb5_util update_princ_encryption
The second command updates all of the principles to the new key even
though it hasn't been activated with use_mkey yet.