Kernel NFS client and Kerberos delegation

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Kernel NFS client and Kerberos delegation
From: Language Lawyer <language.lawyer@xxxxxxxxx>
Date: Mon, 8 Oct 2018 22:46:06 +0300

Hi,

AFAIU kernel NFS client keeps ID -> Name mapping in the "id_resolver" keyring.
Do I understand it correctly that with this hard mapping it is not possible for a service to access a kerberized NFS storage on behalf of some user using user's delegated (for example, with S4U2Self+S4U2Proxy) credentials?

Follow-Ups:
- Re: Kernel NFS client and Kerberos delegation
  - From: Benjamin Coddington

Prev by Date: Re: The Fall Bakeathon in Westford, Ma
Next by Date: Re: Kernel NFS client and Kerberos delegation
Previous by thread: [PATCH] NFS: Fix up a typo in nfs_dns_ent_put
Next by thread: Re: Kernel NFS client and Kerberos delegation
Index(es):
- Date
- Thread

[Index of Archives] [Linux Filesystem Development] [Linux USB Development] [Linux Media Development] [Video for Linux] [Linux NILFS] [Linux Audio Users] [Yosemite Info] [Linux SCSI]

Powered by Linux