Valid Sender ? - Re: missing log while debugging kinit via kdcproxy

Robbie Harwood rharwood at redhat.com
Thu Jan 18 14:22:54 EST 2018


Jochen Hein <jochen at jochen.org> writes:

> Robbie Harwood <rharwood at redhat.com> writes:
>> Jochen Hein <jochen at jochen.org> writes:
>>
>>> When I run kinit on my Ubuntu 17.10 laptop I get:
>>>
>>> After installing krb5-k5tls authentication was successful. I'd find
>>> it helpful it kinit could give a hint that the shared library is
>>> missing. Since not all users will need it, just adding a dependency
>>> to krb5-user seems not appropriate.
>>
>> This is something that would be better reported as an Ubuntu issue to
>> their bugtracker [1], not to the Kerberos list.
>
> Do you suggest that k5tls should always get installed when the
> kerberos client is installed?  Right now Debian and Ubuntu don't do
> that.  CentOS installs it as part of krb5-libs.  If yes, I'll submit a
> bug report to Debian...

Well, I'm biased because I'm responsible for the package in CentOS, but
yes I think it should be, either as a hard dependency or a Recommends.

(That said, I do agree krb5 should log something in this error case -
it's easy enough.)

Thanks,
--Robbie
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
Url : http://mailman.mit.edu/pipermail/kerberos/attachments/20180118/e41f04e5/attachment.bin


More information about the Kerberos mailing list