From: | ghudson@mit.edu |
Subject: | git commit |
Simplify and improve ksu cred verification
When verifying the user's initial credentials, don't compute a server
name and preemptively obtain creds for it. This change allows
krb5_verify_init_creds to use any host key in the keytab, and not just
the one for the canonicalized local hostname.
[ghudson@mit.edu: rewrote commit message]
https://github.com/krb5/krb5/commit/bbfe19f03bdeca7b05b542dbae4c1692c9800c70
Author: Nalin Dahyabhai <nalin@redhat.com>
Committer: Greg Hudson <ghudson@mit.edu>
Commit: bbfe19f03bdeca7b05b542dbae4c1692c9800c70
Branch: master
src/clients/ksu/krb_auth_su.c | 116 +---------------------------------------
1 files changed, 3 insertions(+), 113 deletions(-)