[2253] in Kerberos-V5-bugs
Re: Bug fix: kdc.conf not being read
daemon@ATHENA.MIT.EDU (Sam Hartman)
Sun Sep 22 14:18:18 1996
To: Jon Roma <roma@uiuc.edu>
Cc: Sam Hartman <hartmans@MIT.EDU>,
Christopher Seawood <cseawood@qualcomm.com>, krb5-bugs@MIT.EDU,
kerberos@MIT.EDU
From: Sam Hartman <hartmans@MIT.EDU>
Date: 22 Sep 1996 14:08:56 -0400
In-Reply-To: Jon Roma's message of Sun, 22 Sep 1996 11:57:14 -0500
>>>>> "Jon" == Jon Roma <roma@uiuc.edu> writes:
>> Second, I think you are confused about the location of
>> kdc.conf. The kdc.conf file must live in either the
>> $prefix/lib/krb5kdc or the file specified in the
>> KRB5_KDC_PROFILE environment variable. For various reasons
>> mostly dealing with bad design choices in certain database
>> abstractions, you cannot allow krb5.conf to specify the
>> location of kdc.conf, as kdc.conf may specify an alternate
>> location for krb5.conf. If you find a documentation reference
>> that indicates this is not the case, we will certainly fix
>> either the code or the docs.
Actually, I think everyone is confused. I am confused because
I didn't know we were making a change in this area and I don't
understand how the change was made without breaking some things I
don't think we decided to break. In particular, while I realize that
kadmind doesn't support multiple databases, I wasn't aware that we
decided that we were going to break this for the KDC, and I don't know
how you can keep this working (if it ever was) without the broken
behavior of kdc.conf pointing to krb5.conf.
I think the rest of the world is confused because we didn't
completely implement this change. Anyway, I will try to look at what
we did, although I suspect Barry will get around to responding before
me.
--Sam
