1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
|
There are several different admin protocols in our source tree.
a) V4 server protocol - not documented
b) Old kadmin protocol - which was in the beta code (kadmin/v5passwdd)
c) Newer kadm5 gssrpc based code (kadmin/server)
d) Simple password changing protocol implemented in our kadmin server
with client in clients/kpasswd.
This file will attempt to link the files in this directory with where
the code is used in the source tree.
- kpasswd.protocol: Describes the password changing protocol in
src/kadmin/v5passwdd.
include/krb5/adm.h has some defintions.
Client and server provided
- kadmin.protocol: Describes other administrative protocol options that
src/kadmin/v5passwdd supports
No client in the source tree uses it.
- draft-ietf-cat-kerb-chg-password-02.txt: Describes the
password changing service that
clients/kpasswd uses through krb5_change_password()
located in lib/krb5/os/changepw.c
kadmin/server/schpw.c implements this as part of
the kadmin server.
This is version 1 of the protocol. Version 2 is
in the IETF draft stage and is very different.
Currently: Version 1 is supported - but we may not
be implementing the TCP handling aspects.
- ../doc/kadm5: Describes the current protocol.
kadmin/passwd (which is not installed) uses
the kadm5 protocol for password changing.
|
