[security-dev 01481]: Re: [kerberos-discuss] RFC: keytab automatic refresh in Java

[Nicolas Williams]

On Tue, Dec 22, 2009 at 12:25:18PM +0800, Max (Weijun) Wang wrote:
> How does Solaris deal with keytab changes? Does it accept an empty (or  
> non-existent) keytab?

Solaris Kerberos re-reads the keytab as needed (I think every time,
actually, that it needs to use a key from it).  Solaris does not support
the use of passwords to derive service keys.

Nico
--