Return-Path: 
 <dev-return-52055-apmail-directory-dev-archive=directory.apache.org@directory.apache.org>
X-Original-To: apmail-directory-dev-archive@www.apache.org
Delivered-To: apmail-directory-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 7741D18D8C
	for <apmail-directory-dev-archive@www.apache.org>;
 Wed, 18 Nov 2015 04:58:11 +0000 (UTC)
Received: (qmail 42894 invoked by uid 500); 18 Nov 2015 04:58:11 -0000
Delivered-To: apmail-directory-dev-archive@directory.apache.org
Received: (qmail 42789 invoked by uid 500); 18 Nov 2015 04:58:11 -0000
Mailing-List: contact dev-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@directory.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@directory.apache.org>
List-Post: <mailto:dev@directory.apache.org>
List-Id: <dev.directory.apache.org>
Reply-To: "Apache Directory Developers List" <dev@directory.apache.org>
Delivered-To: mailing list dev@directory.apache.org
Received: (qmail 42484 invoked by uid 99); 18 Nov 2015 04:58:11 -0000
Received: from arcas.apache.org (HELO arcas) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 18 Nov 2015 04:58:11 +0000
Received: from arcas.apache.org (localhost [127.0.0.1])
	by arcas (Postfix) with ESMTP id 0952B2C1F6E
	for <dev@directory.apache.org>; Wed, 18 Nov 2015 04:58:11 +0000 (UTC)
Date: Wed, 18 Nov 2015 04:58:11 +0000 (UTC)
From: "Xu Yaning (JIRA)" <jira@apache.org>
To: dev@directory.apache.org
Message-ID: <JIRA.28811.1102368382000.102032.1447822691035@Atlassian.JIRA>
In-Reply-To: <JIRA.28811.1102368382000@Atlassian.JIRA>
References: <JIRA.28811.1102368382000@Atlassian.JIRA>
 <JIRA.28811.1102368382000@arcas>
Subject: [jira] [Issue Comment Deleted] (DIRKRB-20) Encrypt user keys with
 server master key
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


     [ https://issues.apache.org/jira/browse/DIRKRB-20?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Xu Yaning updated DIRKRB-20:
----------------------------
    Comment: was deleted

(was: It seems that master is not the krbtgt/Domain@Domain key.)

> Encrypt user keys with server master key
> ----------------------------------------
>
>                 Key: DIRKRB-20
>                 URL: https://issues.apache.org/jira/browse/DIRKRB-20
>             Project: Directory Kerberos
>          Issue Type: New Feature
>            Reporter: Enrique Rodriguez
>            Assignee: Enrique Rodriguez
>
> User keys are currently stored in the DIT as plaintext keys, for example, in the krb5key.  These keys should be encrypted with the server master key.  The server master key should be stored in the Eve system partition.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)