| < Shōgun | Russ Allbery > Eagle's Path > July 2007 |
In testing our new Kerberos master software, we discovered that we weren't rejecting passwords based on the principal name. On further investigation, I found that was because we were comparing the password to the fully-qualified principal name. krb5-strength now also checks against the unqualified principal name and the reversed version of that.
You can get the latest version from the krb5-strengh distribution page.
Posted: 2007-07-18 23:38 — Why no comments?
| < Shōgun | Russ Allbery > Eagle's Path > July 2007 |