Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!swrinde!elroy.jpl.nasa.gov!lll-winken!taco!eos.ncsu.edu!kctreima
From: kctreima@eos.ncsu.edu (Kenneth C. Treimann)
Newsgroups: comp.protocols.kerberos
Subject: Verifying passwords without getting new tickets
Keywords: password, ticket, krb_get_pw_in_tkt, not!
Message-ID: <1991May16.213433.28223@ncsu.edu>
Date: 16 May 91 21:34:33 GMT
Sender: news@ncsu.edu (USENET News System)
Reply-To: kctreima@eos.ncsu.edu (Kenneth C. Treimann)
Followup-To: comp.protocols.kerberos
Organization: North Carolina State University
Lines: 19

Hello, I'm new to this newsgroup, so be patient with me.  Is there a way to
verify a userid and password without getting a new ticket-granting-ticket?
All I want to do is pass a name to a function, make sure that Kerberos knows
the principal, prompt for the password, verify it, and return a yes or no 
type answer (or k_errno).  I do NOT want to use krb_get_pw_in_tkt, because
it replaces the existing tickets, and then I have to do another call to
krb_get_pw_in_tkt to get a new ticket-granting-ticket for the user who was
already logged in (unfortunately, this is what my program does now).

I asked one of the systems programmers here and he said he didn't know, but 
would be very interested in such a thing.  Any ideas?

-- 
Kenneth C. Treimann (The Bean) 
Obligatory quote: "F*** you, a******." - The Terminator
Meaningless song lyrics: I'm so bad 
                         I should be in detention.
                               - Anthrax (Stolen from the film Easy Money)
Optional disclaimer: See obligatory quote above.