Skip Menu |

Subject: SVN Commit

In the kpasswd server code, don't set a remote address in the auth
context before calling krb5_rd_priv, since the kpasswd protocol is
well-protected against reflection attacks. This allows password
changes to work in cases where a NAT has changed the client IP address
as it is seen by the server.
Commit By: ghudson
Revision: 25356
Changed Files:
U trunk/src/kadmin/server/schpw.c
Just adding a note that #7886 makes the symmetric change for the reply.