[ Usenet FAQs | Search | Web FAQs | Documents | RFC Index ]
    Search the FAQ Archives

Single Page

Top Document: Kerberos FAQ, v2.0 (last modified 8/18/2000)
Previous Document: 4.5. "Initial Ticket response appears to be Version 4 error"
Next Document: 4.7. "Illegal cross-realm ticket"


4.6. "Message stream modified"


This is returned from the krb5_rd_safe() function. It means that the
checksum used to verify the data packet didn't match what was expected,
which would imply a corrupted data stream or a possible attack.

I have seen this occasionally when propagating our Kerberos database to
slave servers. As far as I can tell, it seems to be benign in this case. It
occurs very infrequently, I haven't had a chance to figure out what is going
on.



Top Document: Kerberos FAQ, v2.0 (last modified 8/18/2000)
Previous Document: 4.5. "Initial Ticket response appears to be Version 4 error"
Next Document: 4.7. "Illegal cross-realm ticket"

Single Page


[ Usenet FAQs | Search | Web FAQs | Documents | RFC Index ]

Send corrections/additions to the FAQ Maintainer:
Ken Hornstein <kenh@cmf.nrl.navy.mil>

Last Update September 05 2008 @ 00:14 AM

© 2008 FAQS.ORG. All rights reserved.