On Fri, 2 Mar 2007, Steinar H. Gunderson wrote:
On Fri, Mar 02, 2007 at 05:36:31PM +0100, Philipp Matthias Hahn wrote:
The patch 11-root-on-krb5-mounts.patch breaks backward compatibility
with nfs-servers <= 1.0.10 when using Kerberos5 with NFSv4!
That's a different bug, really...
rpc.gssd[5012]: ERROR: No usable keytab entries found in keytab
'/etc/krb5.keytab'
rpc.gssd[5012]: Do you have a valid keytab entry for
root/<your.host>@<YOUR.REALM> in keytab file /etc/krb5.keytab ?
rpc.gssd[5012]: Continuing without (machine) credentials - nfs4 mounts with
Kerberos will fail
No, I don't have "root/[EMAIL PROTECTED]", but
"nfs/[EMAIL PROTECTED]" which is working fine between an
etch-server and an etch-client. But the sid-client is no longer able to
mount.
Timo, as the original patch submitter, do you have any suggestions here?
Should I just drop the patch, or is there something else to do?
You can drop it for now. Kevin Coffman hasn't replied to our further
inquiries, and this needs upstream blessing to be sure. It's a pity that
current implementation lacks this feature which is a blocker for us, so
we'll keep keeping our own package in the future as well :)
root-principal is used at least by Solaris, but since Linux is still in
the mid-90's with regards to kerberos-usage this needs some upstream work,
hopefully sooner than later.
ps. Philipp, I guess you won't be using sudo much :)
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
