[krbdev.mit.edu #7127] Can't change password without default_realm
Kevin Wasserman via RT
rt-comment at krbdev.mit.edu
Tue May 8 13:13:20 EDT 2012
>kpasswd krwasserman at SUCHDAMAGE.ORG
kpasswd: Configuration file does not specify default realm getting initial ticke
t
>
The following code from build_in_tkt_name() in get_in_tkt.c fails:
if (in_tkt_service) {
/* this is ugly, because so are the data structures involved. I'm
in the library, so I'm going to manipulate the data structures
directly, otherwise, it will be worse. */
if ((ret = krb5_parse_name(context, in_tkt_service, server)))
-> return ret;
Since it’s about to stomp the server realm with the client realm,
it seems gratuitous to require that there is a default realm to
construct the server principal.
Kevin Wasserman
Painless Security, LLC
More information about the krb5-bugs
mailing list