On May 20, 2007, at 12:21, Michael B Allen wrote:
> In my experience with running valgrind on mechglue, I recall there are
> things that are initialized once when first used and never freed. So
> technically they are leaks and valgrind picks them up but the leaks
> should never grow beyond a fixed
Chris,
Using PAM for Kerberos authentication is in reality against the way Keberos
works. If you use a keberised client like SecureCRT on Windows or a patched
putty for ssh you won't have the problems.
Trying the different domains is only a hack as most applications can not
deal with a usernam
On 5/18/07, Markus Moeller <[EMAIL PROTECTED]> wrote:
> Not sure what you mean with "Do you still have to do this even if you add
> the system to AD via a "User" account?" ?
>
> You add the system to AD to be able to create a keytab which is used to
> verify that you talk to the right kdc during u
Chris Penney wrote:
> On 5/18/07, Douglas E. Engert <[EMAIL PROTECTED]> wrote:
>> Chris Penney wrote:
>>> Ah! I see. I used the pam_krb5 that Douglas noted and the pam config
>>> lines you noted and it works basically as intended.
>>>
>>> Do you still have to do this even if you add the system
Chris Penney wrote:
> On 5/17/07, Douglas E. Engert <[EMAIL PROTECTED]> wrote:
>> Whoses pam_krb5? Russ Allbery's has some extra options that might
>> try both realms.
>
>
> On 5/17/07, Markus Moeller <[EMAIL PROTECTED]> wrote:
>> You need entries like (assuming that users are uniq over both
On 5/18/07, Douglas E. Engert <[EMAIL PROTECTED]> wrote:
>
> Chris Penney wrote:
> >
> > Ah! I see. I used the pam_krb5 that Douglas noted and the pam config
> > lines you noted and it works basically as intended.
> >
> > Do you still have to do this even if you add the system to AD via a
> > "Us
Not sure what you mean with "Do you still have to do this even if you add
the system to AD via a "User" account?" ?
You add the system to AD to be able to create a keytab which is used to
verify that you talk to the right kdc during user authentication. It has
nothing to do with the ability t
"Michael B Allen" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED]
> On Sat, 19 May 2007 15:27:16 +0100
> "Markus Moeller" <[EMAIL PROTECTED]> wrote:
>
>> as I use GSS_C_NULL_OID_SET mechs will never be freed or is there a way to
>> free it from my application ?
>
> Hi Markus,
>
> Y
On Sat, 19 May 2007 15:27:16 +0100
"Markus Moeller" <[EMAIL PROTECTED]> wrote:
> as I use GSS_C_NULL_OID_SET mechs will never be freed or is there a way to
> free it from my application ?
Hi Markus,
You mean the static list of mechs? Why do you want to free that? It should
only be initialized o
I found why the second valgrind message appeared. I unintentially reused the
variable in another gss call before clearing it.
Markus
"Markus Moeller" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
>I have written a tool which processs GSSAPI tokens and loops forever. Since
>it may
10 matches
Mail list logo