Static ticket cache name
Techie
techchavez at gmail.com
Wed Nov 10 17:17:39 EST 2010
Hi Russ,
Yes I am using yours actually, it comes with Debian.
I tried this in the session and auth pam stacks.
pam_krb5.so ccache=file:/tmp/krb5cc_2345
Is this syntax incorrect? I can't find an example using syntax.
Thank you
On Wed, Nov 10, 2010 at 3:12 PM, Russ Allbery <rra at stanford.edu> wrote:
> Techie <techchavez at gmail.com> writes:
>
>> Hello is it possible to set a static credential cache name? For
>> example force the use of krb5cc_12334.
>
> This is not recommended because it's a potential security issue unless
> you're using a non-world-writable directory in which to store your ticket
> caches.
>
>> I have a situation where there will only be one user on a box at a time
>> and I want to use a static credential cache name. I tried using pam_krb5
>> but it is not working. I also tried setting KRB5CCNAME and
>> PAM_KRB5_CCNAME but no success. It may be that this is impossible but
>> figure I would ask.
>
> What pam_krb5 module are you using? Mine has always supported this. See
> the ccache and ccache_dir configuration parameters.
>
> --
> Russ Allbery (rra at stanford.edu) <http://www.eyrie.org/~eagle/>
>
More information about the Kerberos
mailing list