To clarify further, the MIT Windows implementation of the ccache is not file based. The ticket cache is kept in memory and is accessed via a local RPC mechanism. The local RPC mechanism is authenticated. Under Win2k and XP one user cannot normally access another users tickets.
-----Original Message----- From: Garrett Wollman [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 03, 2001 2:43 PM To: [EMAIL PROTECTED] Subject: Re: Ticket stored, accessed where? In article <[EMAIL PROTECTED]>, Nicolas Williams <[EMAIL PROTECTED]> wrote: >Windows 2000: stored by the LSA (I think) >Solaris: stored in "ccache" >MIT: stored in "ccache" >Heimdal: stored in "ccache" >CyberSafe: ? > >A "ccache" is a per-TGT file. Not specifically. A ``ccache'' is an instance of the generic credential-cache API. There is nothing preventing one from using (for example) a UNIX shared-memory segment to store the credentials, rather than a plain file.[1] -GAWollman [1] Actually, there is: traditional SVID-style shared memory segments are persistent, and thus would eventually be completely consumed unless every user was absolutely scrupulous in running `kdestroy'. -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same [EMAIL PROTECTED] | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick
