Can use kerberized telnet, but cannot use pam_krb5
Ralf Hildebrandt
Ralf.Hildebrandt at charite.de
Fri Feb 3 07:50:55 EST 2006
* Russ Allbery <rra at stanford.edu>:
> That looks like a Debian version number. If so, please try 1.2.0-2; I
> fixed a bunch of issues in that release that were in 1.2.0-1.
Russ, I'm seeing a strange corruption in my auth.log:
Feb 3 13:49:03 vpn-gw-int openvpn[8770]: (pam_krb5): none: pam_sm_authenticate: entry
Feb 3 13:49:03 vpn-gw-int openvpn[8770]: pam_krb5: verify_krb_v5_tgt(): krb5_kt_read_service_key(): Key table entry not found
Feb 3 13:49:03 vpn-gw-int openvpn[8770]: (pam_krb5): hildeb: pam_sm_authenticate: exit (success)
Feb 3 13:49:03 vpn-gw-int openvpn[8770]: (pam_krb5): žñ^K^H 8Ø·^P: krb5_cc_destroy: ctx->cache: /tmp/krb5cc_pam_kt21se
look at the "krb5_cc_destroy" line. What could that be? It looks like
a corruption...
# PAM configuration for OpenVPN
auth requisite pam_krb5.so no_ccache debug
account required pam_permit.so
# it's required, and the user must exists in /etc/passwd
--
Ralf Hildebrandt (i.A. des IT-Zentrums) Ralf.Hildebrandt at charite.de
Charite - Universitätsmedizin Berlin Tel. +49 (0)30-450 570-155
Gemeinsame Einrichtung von FU- und HU-Berlin Fax. +49 (0)30-450 570-962
IT-Zentrum Standort CBF send no mail to spamtrap at charite.de
More information about the Kerberos
mailing list