[2988] in Kerberos-V5-bugs
telnet/650: telnetd bug
daemon@ATHENA.MIT.EDU (Garrett H. Sin)
Mon Oct 26 11:25:17 1998
Resent-From: gnats@rt-11.MIT.EDU (GNATS Management)
Resent-To: hartmans@MIT.EDU
Resent-Reply-To: krb5-bugs@MIT.EDU, gsin@julia.mit.edu
Date: Mon, 26 Oct 1998 11:09:12 -0500 (EST)
From: "Garrett H. Sin" <gsin@julia.mit.edu>
Reply-To: gsin@julia.mit.edu
To: krb5-bugs@MIT.EDU
>Number: 650
>Category: telnet
>Synopsis: When using telnetd -a off, Kerberos V5 requires that
>Confidential: no
>Severity: serious
>Priority: high
>Responsible: hartmans
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Mon Oct 26 11:10:00 EST 1998
>Last-Modified:
>Originator: Garrett H. Sin
>Organization:
MIT
>Release: krb5-1.0.5
>Environment:
System: HP-UX julia B.10.20 A 9000/777 2009912747 two-user license
>Description:
When I use telnetd -a off and then attempt to telnet to julia.mit.edu,
I'm asked to enter my password. However, my password at julia will not
allow me to log in! Rather, I must enter in my Kerberos password to
gain access to the workstation.
>How-To-Repeat:
Change password locally
Edit /etc/inetd.conf to change telnetd to telnetd -a off
telnet -axf to the local host
Enter the local password
Enter the Kerberos password
>Fix:
>Audit-Trail:
>Unformatted:
I enter in my Kerberos password to log in, instead of
my localhost password
