> The time on the systems is synchronized with NTP, so I can't think of
> any other reason why this would be going on.
We recently ran into a problem that OpenNTP (from Debian Sarge) would
stop running, so it would be worth double checking the clocks on the
servers.
--
Jay Kline
http://www.slushp
On 11/17/05, ted creedon <[EMAIL PROTECTED]> wrote:
> Check the ntp logs and ntp.conf for real ntp servers.
> Here we had 3 machines running off the local clock by accident causing a
> similar problem.
Check the timezone too. Its easy to miss.
--
Jay Kline
http://www.slushpupie.com/
___
On 10/28/05, Joe Buehler <[EMAIL PROTECTED]> wrote:
> The default afsd options (for AIX machines at least) end up
> producing a /afs directory that is mode 777. This causes
> sshd to refuse to use public key files stored in .ssh
> directories somewhere under /afs.
Something of importance, is put
On 9/21/05, Jim Rees <[EMAIL PROTECTED]> wrote:
> It seems the most
> universal and safe way to deal with it would be to have some utility
> to drop the PAG, if that is at all possible.
>
> Why not acquire a new pag with no tokens when you start a service? That's
> what I do.
Because as soo
On 9/21/05, Douglas E. Engert <[EMAIL PROTECTED]> wrote:
> Another solution is to use PAM to get the PAG and token. See other
> posts on this list on how this can be done, for both gssapi and
> when ssh calls kerberos.
Unfortunately we cant do that with our version of kerberos and ssh.
Also, I sh
Im having some issues with PAG's and ssh on the systems I manage. They
are all Linux (Debian Sarge) with OpenAFS 1.3.81. We must use the
kerberos with SecurID, which puts many kinks in the way authentication
works, but those have all been worked out. sshd only allows
authentication via kerberos, a