[kitten] Non-Password Password Change
"Henry B (Hank) Hotz, CISSP" <hbhotz@oxy.edu> Thu, 15 October 2015 19:59 UTC
Return-Path: <hbhotz@oxy.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8BC61A1A5F for <kitten@ietfa.amsl.com>; Thu, 15 Oct 2015 12:59:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.701
X-Spam-Level:
X-Spam-Status: No, score=-0.701 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ywFMnB_Vm36p for <kitten@ietfa.amsl.com>; Thu, 15 Oct 2015 12:59:52 -0700 (PDT)
Received: from mailout.easymail.ca (mailout.easymail.ca [64.68.201.169]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B29811A1A5D for <kitten@ietf.org>; Thu, 15 Oct 2015 12:59:52 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mailout.easymail.ca (Postfix) with ESMTP id 53AA3E335 for <kitten@ietf.org>; Thu, 15 Oct 2015 15:59:49 -0400 (EDT)
X-Virus-Scanned: Debian amavisd-new at mailout.easymail.ca
Received: from mailout.easymail.ca ([127.0.0.1]) by localhost (easymail-mailout.easydns.vpn [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Uj0tljSaDzMP for <kitten@ietf.org>; Thu, 15 Oct 2015 15:59:49 -0400 (EDT)
Received: from [192.168.1.180] (wsip-70-184-69-253.oc.oc.cox.net [70.184.69.253]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mailout.easymail.ca (Postfix) with ESMTPSA id E761AE087 for <kitten@ietf.org>; Thu, 15 Oct 2015 15:59:48 -0400 (EDT)
From: "Henry B (Hank) Hotz, CISSP" <hbhotz@oxy.edu>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-Id: <63860D22-138C-430F-B615-06CBB14654CC@oxy.edu>
Date: Thu, 15 Oct 2015 12:59:46 -0700
To: kitten@ietf.org
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2104\))
X-Mailer: Apple Mail (2.2104)
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/l7p-7cnrkfiwmf4u37R6Qo1td2o>
Subject: [kitten] Non-Password Password Change
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Oct 2015 19:59:54 -0000
There’s been work on improved password change protocols, but I’m not sure how much actually completed. I also remember once suggesting that loading a KDB entry from a keytab file would be useful, at least for handling cross-realm principals. Are there any password change protocols where you can supply the enctype and a key instead of a text password? Or is the only way to do that via the kdc’s kadmin interface. Personal: hbhotz@oxy.edu Business: hhotz@securechannels.com
- [kitten] Non-Password Password Change Henry B (Hank) Hotz, CISSP
- Re: [kitten] Non-Password Password Change Greg Hudson
- Re: [kitten] Non-Password Password Change Henry B (Hank) Hotz, CISSP
- Re: [kitten] Non-Password Password Change D.Rogers
- Re: [kitten] Non-Password Password Change Nico Williams