On Tue, 11 Sep 2007, Simon Wilkinson wrote:
> Whilst it's not Russ's patch (I wrote this before I realised he had
> one too), I've attached the patch we use locally. If you set
> KrbServiceName to 'Any', then it will accept any credential from
> the keytab.
Works nicely.
thanks
mark
_
Simon Wilkinson <[EMAIL PROTECTED]> writes:
> Whilst it's not Russ's patch (I wrote this before I realised he had one
> too), I've attached the patch we use locally. If you set KrbServiceName
> to 'Any', then it will accept any credential from the keytab.
This is a better patch anyway. I wrote
On 11 Sep 2007, at 06:38, Mark Davies wrote:
On Tue, 11 Sep 2007, Russ Allbery wrote:
I patched mod_auth_kerb a long time back to do this and thought
that patch was incorporated into the upstream source, but
apparently it wasn't. You have to patch it to not explicitly
import credentials and i
On Tue, 11 Sep 2007, Russ Allbery wrote:
> I patched mod_auth_kerb a long time back to do this and thought
> that patch was incorporated into the upstream source, but
> apparently it wasn't. You have to patch it to not explicitly
> import credentials and instead let the GSS-API library figure out
Mark Davies <[EMAIL PROTECTED]> writes:
> Russ Allbery wrote:
>> In some cases the client will just use whatever hostname is given on
>> the command line, but in many cases it will do a forward and reverse
>> DNS lookup to canonicalize the hostname (although this is less secure
>> if you can't tru
Russ Allbery wrote:
> In some cases the client will just use whatever hostname is given on
> the command line, but in many cases it will do a forward and reverse
> DNS lookup to canonicalize the hostname (although this is less
> secure if you can't trust DNS, and most people can't). So in
> practi
Miguel Sanders <[EMAIL PROTECTED]> writes:
> I was just wondering how Kerberos reacts to IP aliases (virtual IP
> addresses). Do you have to create a host principal for the virtual
> hostname aswell?
Generally, yes.
Kerberos itself doesn't know anything about such things and just
authenticates
Dear all
I was just wondering how Kerberos reacts to IP aliases (virtual IP
addresses).
Do you have to create a host principal for the virtual hostname
aswell?
Any information on this would be grately appreciated.
Thnx
Miguel
Kerberos mailing lis