[Freeipa-devel] Fix password changes via kadmin
Simo Sorce
simo at redhat.com
Sun Apr 5 22:53:33 UTC 2015
Fix for bug 4914.
I've tested it locally and seem to do exactly what is needed. I couldn't
detect any side effects, except that if you use kadmin to get a
randomized password for a service then you'll get a key for all
supported types (currently aes256, aes128, des3, rc4, camellia128,
camellia256) instead of just the default ones (aes256, aes128, des3,
rc4) if you do not specify enctypes. I think that is fine, we use
ipa-getkeytab anyway in the normal course of business and that one uses
a different code path.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-simo-522-1-Detect-default-encsalts-kadmin-password-change.patch
Type: text/x-patch
Size: 11733 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20150405/1b82a14e/attachment.bin>
More information about the Freeipa-devel
mailing list