Can use kerberized telnet, but cannot use pam_krb5

Ralf Hildebrandt Ralf.Hildebrandt at charite.de
Fri Feb 3 07:50:55 EST 2006


* Russ Allbery <rra at stanford.edu>:

> That looks like a Debian version number.  If so, please try 1.2.0-2; I
> fixed a bunch of issues in that release that were in 1.2.0-1.

Russ, I'm seeing a strange corruption in my auth.log:

Feb  3 13:49:03 vpn-gw-int openvpn[8770]: (pam_krb5): none: pam_sm_authenticate: entry
Feb  3 13:49:03 vpn-gw-int openvpn[8770]: pam_krb5: verify_krb_v5_tgt(): krb5_kt_read_service_key(): Key table entry not found
Feb  3 13:49:03 vpn-gw-int openvpn[8770]: (pam_krb5): hildeb: pam_sm_authenticate: exit (success)
Feb  3 13:49:03 vpn-gw-int openvpn[8770]: (pam_krb5): žñ^K^H 8Ø·^P: krb5_cc_destroy: ctx->cache: /tmp/krb5cc_pam_kt21se

look at the "krb5_cc_destroy" line. What could that be? It looks like
a corruption...

# PAM configuration for OpenVPN

auth    requisite       pam_krb5.so no_ccache debug
account  required       pam_permit.so
# it's required, and the user must exists in /etc/passwd

-- 
Ralf Hildebrandt (i.A. des IT-Zentrums)         Ralf.Hildebrandt at charite.de
Charite - Universitätsmedizin Berlin            Tel.  +49 (0)30-450 570-155
Gemeinsame Einrichtung von FU- und HU-Berlin    Fax.  +49 (0)30-450 570-962
IT-Zentrum Standort CBF                 send no mail to spamtrap at charite.de



More information about the Kerberos mailing list