diff options
| author | Andrew Bartlett <abartlet@samba.org> | 2022-10-31 14:33:09 +1300 |
|---|---|---|
| committer | Andrew Bartlett <abartlet@samba.org> | 2022-11-02 04:23:34 +0000 |
| commit | ef28247f3bbbd7cf9daed7a4dba28855496ce38e (patch) | |
| tree | f97d5b9b41ebbfb7e52269486b3c41d9a0fd9575 /third_party/heimdal/doc/whatis.texi | |
| parent | ab4c7bda8daccdb99adaf6ec7fddf8b5f84be09a (diff) | |
| download | samba-ef28247f3bbbd7cf9daed7a4dba28855496ce38e.tar.gz | |
third_party/heimdal: import lorikeet-heimdal-202210310104 (commit 0fc20ff4144973047e6aaaeb2fc8708bd75be222)
This commit won't compile on it's own, as we need to fix the build system
to cope in the next commit.
The purpose of this commit is to update to a new lorikeet-heimdal tree
that includes the previous two patches and is rebased on a current
Heimdal master snapshot.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Diffstat (limited to 'third_party/heimdal/doc/whatis.texi')
| -rw-r--r-- | third_party/heimdal/doc/whatis.texi | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/third_party/heimdal/doc/whatis.texi b/third_party/heimdal/doc/whatis.texi index 902344b0352..2b0e98de552 100644 --- a/third_party/heimdal/doc/whatis.texi +++ b/third_party/heimdal/doc/whatis.texi @@ -133,8 +133,10 @@ It would be possible to add a @dfn{replay cache} to the server side. The idea is to save the authenticators sent during the last few minutes, so that @var{B} can detect when someone is trying to retransmit an already used message. This is somewhat impractical -(mostly regarding efficiency), and is not part of Kerberos 4; MIT -Kerberos 5 contains it. +(mostly regarding performance); MIT Kerberos 5 has a replay cache, +while Heimdal does not. + +However, most GSS-API applicatons do not need a replay cache at all. To authenticate @var{B}, @var{A} might request that @var{B} sends something back that proves that @var{B} has access to the session |