kprop problem (slave installation)

Ken Raeburn raeburn at MIT.EDU
Wed May 19 17:59:01 EDT 2004


On May 19, 2004, at 10:12, Domenico Diacono wrote:
> On the slave the only log that has a trace of the failed transaction 
> is the
> auth.log:
>
> May 19 15:30:11 slave xinetd[1237]: START: krb_prop pid=1454 
> from=ip.master
> May 19 15:30:11 slave xinetd[1454]: FAIL: krb_prop address 
> from=ip.master

Sounds like the server side is dying right away.  Check some basics 
first:  Is the pathname in the xinetd config file correct?  Can the 
specified user (probably root) run the executable?  Is it the right 
executable?  Does it crash immediately if you try running it from the 
command line?  Are there any core files in the directory that xinetd 
runs programs in?  Does it complain about the command line arguments if 
you run it with those specified in the xinetd config file?  Did you 
give it the "-S" argument that tells it that it, and not xinetd, should 
be handling new incoming connections?

Check your syslog configuration to see where daemon.info (and more 
severe) messages will be logged, since that's what kpropd uses; if 
you're not logging them, you should change that.

Worst case, you could set up xinetd to run kpropd under strace (for 
Linux; truss for Solaris; ktrace for NetBSD; etc) and log the syscall 
activity someplace where you can examine what's going on.  (Don't post 
the output, it'll probably include private key data.)

Ken



More information about the Kerberos mailing list