xrealm_non_transitive not trust_non_transitive
authorSam Hartman <hartmans@mit.edu>
Sat, 3 Jan 2009 23:20:31 +0000 (23:20 +0000)
committerSam Hartman <hartmans@mit.edu>
Sat, 3 Jan 2009 23:20:31 +0000 (23:20 +0000)
commit5bfe3caf46dcc046b66066421ee0a9e9fbc076e3
treec731cf8ef976f13f7473181a23e53c9a72ad5570
parent59db8ef27f073f1a39ccb8b71b592ce7969e580c
xrealm_non_transitive not trust_non_transitive

Kerberos does not imply trust in the existence of a cross-realm key.
Trust is implied  when a foreign principal is placed on an ACL: the remote realm
is trusted to authenticate that principal and is trusted
not to confuse one principal with another.
Keep terminology consistent.

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@21693 dc483132-0cff-0310-8789-dd5450dbe970
src/include/kdb_ext.h
src/kdc/kdc_util.c