Yair Yarom <ir...@cs.huji.ac.il> writes: > When using FAST a ticket cache should be available beforehand. On some > situations there is no such cache or it is not readable.
> Is it possible to add an option to automatically create this ticket > cache by using the anonymous user? i.e. like calling 'kinit -n' before > kinit. The attached patch suppose to do this by adding anon_fast option, > but I'm not sure if there are any security issues. I'm not sure. Sam, could you take a look at this (there's a patch in the bug)? I'm not current with the state of anonymous authentication and the requirements for FAST. My assumption would have been that an anonymous ticket wouldn't be useful for FAST purposes since it's not backed by a strong key, but it may very well be that I'm misunderstanding FAST. -- Russ Allbery (r...@debian.org) <http://www.eyrie.org/~eagle/> -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
