Skip Menu |
 

Download (untitled) / with headers
text/plain 2.5KiB
From darrenr@chiron.nabaus.com.au Mon May 20 23:45:43 2002
Received: from pacific-carrier-annex.mit.edu (PACIFIC-CARRIER-ANNEX.MIT.EDU [18.7.21.83])
by rt-11.mit.edu (8.9.3/8.9.3) with ESMTP id XAA23155
for <bugs@RT-11.mit.edu>; Mon, 20 May 2002 23:45:42 -0400 (EDT)
Received: from orange.national.com.au (orange.national.com.au [203.57.240.81])
by pacific-carrier-annex.mit.edu (8.9.2/8.9.2) with ESMTP id XAA20198
for <krb5-bugs@mit.edu>; Mon, 20 May 2002 23:45:41 -0400 (EDT)
Received: by orange.national.com.au (Postfix, from userid 5)
id 8A50F144848; Tue, 21 May 2002 13:45:39 +1000 (EST)
Received: from orange(203.57.240.81) by orange.national.com.au via csmap (V4.1)
id srcAAAwDa4iY; Tue, 21 May 02 13:45:39 +1000
Received: from chiron.rais.nabaus.com.au (unknown [164.53.57.131])
by orange.national.com.au (Postfix) with ESMTP id 9799F144847
for <krb5-bugs@mit.edu>; Tue, 21 May 2002 13:45:38 +1000 (EST)
Received: (from darrenr@localhost)
by chiron.rais.nabaus.com.au (8.8.8+Sun/8.8.8) id NAA03700;
Tue, 21 May 2002 13:45:36 +1000 (EST)
Message-Id: <200205210345.NAA03700@chiron.rais.nabaus.com.au>
Date: Tue, 21 May 2002 13:45:36 +1000 (EST)
From: darrenr@chiron.nabaus.com.au
Reply-To: darrenr@chiron.nabaus.com.au
To: krb5-bugs@mit.edu
Subject: setting default_keytab_name does not work with ktadd in kadmin
X-Send-Pr-Version: 3.99

Show quoted text
>Number: 1109
>Category: krb5-admin
>Synopsis: setting default_keytab_name does not work with ktadd in kadmin
>Confidential: no
>Severity: serious
>Priority: low
>Responsible: krb5-unassigned
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Mon May 20 23:46:00 EDT 2002
>Last-Modified:
>Originator: Darren Reed
>Organization:
Optimation
Show quoted text
>Release: krb5-1.2.5
>Environment:

System: SunOS chiron 5.5.1 Generic_103640-34 sun4u sparc SUNW,Ultra-2
Architecture: sun4

Show quoted text
>Description:
If you were to set default_keytab_name in krb5.conf you would expect that
it would work when using the ktadd command in kadmin. This however, is not
the case. For default_keytab_name to work with ktadd, you must specify the
filename with the prefix WRFILE:, however, doing this then breaks other
applications that do not recognise the WRFILE: prefix. In contrast, you do
not need to use WRFILE with the -k option to ktadd.
Show quoted text
>How-To-Repeat:
Set default_keytab_name in krb5.conf to an ordinary pathname without any
prefix.
Show quoted text
>Fix:
The current workaround is to change the default name of the keytab file
by modifying the .h file it is stored in and recompile Kerberos.
Show quoted text
>Audit-Trail:
>Unformatted:
It appears that Ken fixed this by accident in krb5 1.7 when performing a
minor code cleanup (r20594). FILE keytabs now support write operations,
and WRFILE is redundant.

There are some remaining opportunities for code cleanup, and also a
display error (kadmin's xst command displays the wrong keytab name if you
override the default name).