logo_kerberos.gif

Release Meeting Minutes/2013-05-07

From K5Wiki
Jump to: navigation, search


Shawn Emery, Will Fiveash, Greg Hudson, Ben Kaduk, Zhanna Tsitkov, Tom Yu

Shawn
Interim meeting -- SASL OpenID, OAuth, SAML mech says it does mutual auth when it actually doesn't. Consensus in session was to change GS2 requirements. For the "channel bound" GSS extension, consensus in the session was to use the "null context" approach. IAKERB has a PKU2U text dependency. Also some OID change stuff.
Shawn
Replay cache -- customer had some rcache corruption. Considering partitioning a directory based on authenticator data.
Greg
Conflicts in same process?
Shawn
Actually across processes. Will look into some more. Timestamps zeroed out etc.