Bug 53520 - ebuild for mit-krb5-1.3.3 has /etc/krb5.conf file that contains parameters not understood by kerberos
|
Bug#:
53520
|
Product: Gentoo Linux
|
Version: unspecified
|
Platform: All
|
|
OS/Version: All
|
Status: RESOLVED
|
Severity: normal
|
Priority: P2
|
|
Resolution: FIXED
|
Assigned To: kerberos@gentoo.org
|
Reported By: gentoo@gnosys.biz
|
|
Component: Ebuilds
|
|
|
URL:
|
|
Summary: ebuild for mit-krb5-1.3.3 has /etc/krb5.conf file that contains parameters not understood by kerberos
|
|
Keywords:
|
|
Status Whiteboard:
|
|
Opened: 2004-06-10 06:01 0000
|
# cat /etc/krb5.conf|grep lifetime
ticket_lifetime = 600
This parameter is not defined in the manpage. Perhaps the author meant
to write:
renew_lifetime?
Reproducible: Always
Steps to Reproduce:
1. n/a
2.
3.
Actual Results:
see details
Expected Results:
see details
tombstone etc # emerge info
Portage 2.0.50-r8 (default-x86-2004.0, gcc-3.3.2, glibc-2.3.2-r9,
2.4.25-gentoo-r2)
=================================================================
System uname: 2.4.25-gentoo-r2 i686 Intel(R) Xeon(TM) CPU 2.40GHz
Gentoo Base System version 1.4.3.13
distcc 2.13 i686-pc-linux-gnu (protocols 1 and 2) (default port 3632)
[disabled]
ccache version 2.3 [enabled]
Autoconf: sys-devel/autoconf-2.58-r1
Automake: sys-devel/automake-1.8.3
ACCEPT_KEYWORDS="x86"
AUTOCLEAN="yes"
CFLAGS="-march=pentium4 -O2 -pipe -fomit-frame-pointer"
CHOST="i686-pc-linux-gnu"
COMPILER="gcc3"
CONFIG_PROTECT="/etc /etc/tomcat /usr/X11R6/lib/X11/xkb /usr/kde/2/share/config /usr/kde/3/share/config /usr/share/config /usr/share/texmf/dvipdfm/config/ /usr/share/texmf/dvips/config/ /usr/share/texmf/tex/generic/config/ /usr/share/texmf/tex/platex/config/ /usr/share/texmf/xdvi/ /var/bind /var/qmail/control"
CONFIG_PROTECT_MASK="/etc/afs/C /etc/afs/afsws /etc/gconf /etc/terminfo /etc/env.d"
CXXFLAGS="-march=pentium4 -O2 -pipe -fomit-frame-pointer"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoaddcvs ccache sandbox"
GENTOO_MIRRORS="ftp://vlaai.snt.ipv6.utwente.nl/pub/os/linux/gentoo/
http://128.213.5.34/gentoo/ http://mirror.datapipe.net/gentoo"
MAKEOPTS="-j5"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.namerica.gentoo.org/gentoo-portage"
USE="acl afs apache2 apm avi berkdb crypt cups doc emacs emacs-w3 encode esd
ethereal firebird flac foomaticdb gdbm gif gpm gtk gtk2 guile icq imap imlib
innodb ipv6 jabber jack java jpeg kerberos krb4 ldap libg++ libwww mad maildir
mcal mikmod motif mpeg mysql ncurses nls oggvorbis opengl oss pam pdflib perl
png ppds prelude python quicktime readline ruby samba sasl sdl slang spell sse
ssl svga tcpd tetex truetype unicode usb vhosts x86 xml2 xmms xv zeo zlib"
Also, this section in krb5.conf is not defined in the manpage for krb5.conf
[kdc]
and the "profile" parameter within it is also not defined in the manpage for
krb5.conf
You should better ask on mit-krb5 email list for help. It is a bit unfortunate
that many documents hanging on internet mix together heimdals /etc/krb5.conf
syntax with mit-krb5 syntax. Mostly they are same but there are some differences
... in a quick search, there are MIT krb5 specific for kadmin section:
[kadmin]
default_keys = des:pw-salt v4
default_etypes = des-cbc-crc:normal des-cbc-crc:v4 des-cbc-crc:
On the other hand, docs are not often up-to-date, so are you sure it not used?
Any error messages?
Please note I use heimdal so I know about mit krb5 just from people on openfs
email lists. ;)
