Ticket History #7886: Don't check kpasswd reply address

# Thu Mar 20 17:47:36 2014 ghudson@mit.edu (Greg Hudson) - Ticket created

From:	ghudson@mit.edu
Subject:	git commit

Download (untitled) / with headers
text/plain 754B

Don't check kpasswd reply address

Don't check the address of the kpasswd server when parsing the reply
we received from it. If the server's address was modified by a proxy
or other network element, the user will be incorrectly warned that the
password change failed when it succeeded. The check is unnecessary as
the kpasswd protocol is not subject to a reflection attack.

[ghudson@mit.edu: edit commit message]

https://github.com/krb5/krb5/commit/b562400826409deceb0d52ffbe6570670ee9db55
Author: Nalin Dahyabhai <nalin@dahyabhai.net>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: b562400826409deceb0d52ffbe6570670ee9db55
Branch: master
src/lib/krb5/os/changepw.c | 21 ---------------------
1 files changed, 0 insertions(+), 21 deletions(-)

# Thu Mar 20 17:47:36 2014 ghudson@mit.edu (Greg Hudson) - Requestor ghudson@mit.edu (Greg Hudson) added

# Thu Mar 20 17:47:36 2014 ghudson@mit.edu (Greg Hudson) - Status changed from 'new' to 'review'

# Tue Aug 12 18:27:38 2014 tlyu (Taylor Yu) - Status changed from 'review' to 'resolved'

# Tue Aug 12 18:27:38 2014 tlyu (Taylor Yu) - Version_Fixed 1.13 added