docs-xml: Improve krb5_ccache_type documentation

author Andreas Schneider <asn@samba.org>

Thu, 31 Oct 2019 16:10:59 +0000 (17:10 +0100)

committer Andreas Schneider <asn@cryptomilk.org>

Thu, 31 Oct 2019 18:08:29 +0000 (18:08 +0000)
author Andreas Schneider <asn@samba.org>
Thu, 31 Oct 2019 16:10:59 +0000 (17:10 +0100)
committer Andreas Schneider <asn@cryptomilk.org>
Thu, 31 Oct 2019 18:08:29 +0000 (18:08 +0000)
diff --git a/docs-xml/manpages/pam_winbind.conf.5.xml b/docs-xml/manpages/pam_winbind.conf.5.xml

index 1c48f1bc428f922d7e802811b880e6ec482d69cc..918450c4643273fd8563b7616c2bbb13c3ce9650 100644 (file)
--- a/docs-xml/manpages/pam_winbind.conf.5.xml
+++ b/docs-xml/manpages/pam_winbind.conf.5.xml
@@ -121,11 +121,15 @@
                 library). In case of FILE a credential cache in the form of
                 /tmp/krb5cc_UID will be created -  in case of DIR you NEED
                 to specify a directory. UID is replaced with the numeric
-               user id.</para>
+               user id. The UID directory is being created. The path up to
+               the directory should already exist. Check the details of the
+               Kerberos implmentation.</para>
  
                 <para>When using the KEYRING type, the supported mechanism is
                 <quote>KEYRING:persistent:UID</quote>, which uses the Linux
-               kernel keyring to store credentials on a per-UID basis.</para>
+               kernel keyring to store credentials on a per-UID basis.
+               The KEYRING has its limitations. As it is secure kernel memory,
+               for example bulk sorage of credentils is for not possible.</para>
  
                 <para>When using th KCM type, the supported mechanism is
                 <quote>KCM:UID</quote>, which uses a Kerberos credential
author	Andreas Schneider <asn@samba.org>
	Thu, 31 Oct 2019 16:10:59 +0000 (17:10 +0100)
committer	Andreas Schneider <asn@cryptomilk.org>
	Thu, 31 Oct 2019 18:08:29 +0000 (18:08 +0000)