[38629] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

clarify meaning of dns_lookup_kdc?

daemon@ATHENA.MIT.EDU (Jerry Shipman)
Fri Nov 8 14:58:46 2019

From: Jerry Shipman <jes59@cornell.edu>
To: "kerberos@mit.edu" <kerberos@mit.edu>
Date: Fri, 8 Nov 2019 19:58:33 +0000
Message-ID: <F09602EE-0ACC-40AB-8A65-E2DFB2FEDACB@cornell.edu>
Content-Language: en-US
Content-ID: <9218A011160FDF4AB1A9BDD3C1B352EA@namprd04.prod.outlook.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Hello,
Can you clarify for me exactly what dns_lookup_kdc does?

I am trying to help a user debug something. The user's config file has 
dns_lookup_kdc=false
under [libdefaults]
and then does not specify any realms under [realms].
To my intuition, it should mean that nothing works at all.
But experimentally, it does work.
Doing some tcpdumping, I can see it do a DNS lookup to find the KDCs, even though dns_lookup_kdc is set false.

Perhaps the dns_lookup_kdc only affects realms that are defined in your [realms] section?

Thank you for your help,
Jerry

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[38629] in Kerberos

clarify meaning of dns_lookup_kdc?

daemon@ATHENA.MIT.EDU (Jerry Shipman)Fri Nov 8 14:58:46 2019

daemon@ATHENA.MIT.EDU (Jerry Shipman)
Fri Nov 8 14:58:46 2019