[2365] in Kerberos-V5-bugs
pending/124: krb5-beta7: looking for kdc.conf in wrong place
daemon@ATHENA.MIT.EDU (John Gardiner Myers)
Sun Oct 20 14:36:24 1996
Resent-From: gnats@rt-11.MIT.EDU (GNATS Management)
Resent-To: gnats-admin@rt-11.MIT.EDU
Resent-Reply-To: krb5-bugs@MIT.EDU, John Gardiner Myers <jgm@CMU.EDU>
Date: Sun, 20 Oct 1996 14:34:13 -0400 (EDT)
From: John Gardiner Myers <jgm@CMU.EDU>
To: krb5-bugs@MIT.EDU
>Number: 124
>Category: pending
>Synopsis: krb5-beta7: looking for kdc.conf in wrong place
>Confidential: yes
>Severity: serious
>Priority: medium
>Responsible: gnats-admin
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Sun Oct e 14:36:01 EDT 1996
>Last-Modified:
>Originator:
>Organization:
>Release:
>Environment:
>Description:
>How-To-Repeat:
>Fix:
>Audit-Trail:
>Unformatted:
The various install and admin guides state that the location of
kdc.conf can be changed with a "pointer" in /etc/krb5.conf. The man
page for krb5.conf does not mention this, it should be fixed.
The admin.texinfo document gives this example:
[kdc]
profile = @value{ROOTDIR}/lib/krb5kdc/kdc.conf
This appears not to work. With an /etc/krb5.conf of:
[libdefaults]
default_realm = PORTOLACOMM.COM
default_tgs_enctypes = des-cbc-crc
default_tkt_enctypes = des-cbc-crc
krb4_config = /etc/krb.conf
krb4_realms = /etc/krb.realms
[realms]
PORTOLACOMM.COM = {
kdc = porta-sparc.portolacomm.com
admin_server = porta-sparc.portolacomm.com
default_domain = portolacomm.com
}
[kdc]
profile = /etc/kdc.conf
[logging]
kdc = SYSLOG:INFO:DAEMON
admin_server = FILE:/var/adm/kadmin.log
Running:
/usr/local/sbin/kdb5_util create -r PORTOLACOMM.COM -s
tries to create the database in the wrong location. Running truss
shows that it is attempting to read kdc.conf from the compiled-in
location of /usr/local/lib/krb5kdc/kdc.conf, and not /etc/kdc.conf
--
_.John Gardiner Myers Internet: jgm+@CMU.EDU
LoseNet: ...!seismo!ihnp4!wiscvm.wisc.edu!give!up
