Root login

Austin Gonyou austin at coremetrics.com
Tue Apr 23 15:04:31 EDT 2002


Hrm..that is strange. Did you replace login entirely with login.krb5(via
symlink or some such thing?) That could be part of the problem. If you
have pam_krb5.so, you should probably use that and configure pam to do
what you want, otherwise, I don't think it will be possible.



On Tue, 2002-04-23 at 12:53, Marc wrote:
> Austin Gonyou wrote:
> 
> > Assign a password to the root user. It will use that first. 
> > 
> > On Tue, 2002-04-23 at 10:46, Marc wrote:
> > 
> >>Hello,
> >>
> >>In this situation I am using Linux Slackware 8 with a 2.2 kernel and 
> >>with MIT Kerberos 1.2.4. I have installed the login.krb5 instead of
> the 
> >>normal krb, my question is:
> >>
> >>Is it possible to avoid the root account to be checked against
> Kerberos 
> >>and instead make only the root account to be checked in /etc/passwd 
> >>using login.krb5 ?
> >>
> >>Regards
> >>Marc
> >>
> >>________________________________________________
> >>Kerberos mailing list           Kerberos at mit.edu
> >>http://mailman.mit.edu/mailman/listinfo/kerberos
> >>
> 
> 
> Mhh very strange, root has got a password but it will not check 
> passwd/shadow file, login prompts me:
> 
> Password for root:
> 
> and if I check the traffic with tcpdump -X port 88 I see that I queries 
> the KDC. Any ideas why it does that ??
> 
> Btw: I use MIT Kerberos v1.2.3 (sorry not the 1.2.4)
> 
> Marc
> 
> ________________________________________________
> Kerberos mailing list           Kerberos at mit.edu
> http://mailman.mit.edu/mailman/listinfo/kerberos
-- 
Austin Gonyou
Systems Architect, CCNA
Coremetrics, Inc.
Phone: 512-698-7250
email: austin at coremetrics.com

"It is the part of a good shepherd to shear his flock, not to skin it."
Latin Proverb
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: This is a digitally signed message part
Url : http://mailman.mit.edu/pipermail/kerberos/attachments/20020423/235077d3/attachment.bin


More information about the Kerberos mailing list