Problems with SSH-GSSAPI ticket authentication and NAT
Simo Sorce
simo at redhat.com
Wed Jan 2 16:46:09 EST 2013
On Wed, 2013-01-02 at 14:10 -0700, Ken Dreyer wrote:
> On Wed, Jan 2, 2013 at 1:56 PM, Greg Hudson <ghudson at mit.edu> wrote:
> > On 01/02/2013 12:33 PM, nomike wrote:
> >> I strace'd the call to ssh and I could clearly seeing it doing a forward
> >> and a reverse lookup after reading "krb5.conf".
> >
> > For some versions of krb5 (anything prior to 1.10.2) on most Linux
> > systems, rdns=false does not work due to a glibc bug, unfortunately.
>
> Yeah, I have to set entries in /etc/hosts for this reason (Fedora 17).
In Fedora 17 we should have fixes since a while top make it working
again, if not please open a bug in bugzilla.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Kerberos
mailing list