[3300] in Kerberos-V5-bugs
pending/1045: login name too long errors
daemon@ATHENA.MIT.EDU (Matthew Glogowski/Cambridge/IBM)
Wed Jan 16 13:57:04 2002
Resent-From: gnats@rt-11.mit.edu (GNATS Management)
Resent-To: gnats-admin@rt-11.mit.edu
Resent-Reply-To: krb5-bugs@MIT.EDU,
"Matthew Glogowski/Cambridge/IBM" <matthew_glogowski@us.ibm.com>
Message-Id: <OF1A0A5748.0091E888-ON85256B43.006645CF@lotus.com>
Date: Wed, 16 Jan 2002 13:47:28 -0500
From: "Matthew Glogowski/Cambridge/IBM" <matthew_glogowski@us.ibm.com>
To: krb5-bugs@mit.edu
>Number: 1045
>Category: pending
>Synopsis: login name too long errors
>Confidential: yes
>Severity: serious
>Priority: medium
>Responsible: gnats-admin
>State: open
>Class: sw-bug
>Submitter-Id: unknown
>Arrival-Date: Wed Jan 16 13:57:00 EST 2002
>Last-Modified:
>Originator: Matthew Glogowski
>Organization:
IBM Software Group
>Release: krb5-1.2.3
>Environment:
System: SunOS crabgrass 5.8 Generic_108528-12 sun4u sparc
SUNW,Ultra-2
Architecture: sun4
>Description:
there appears to be a problem with the kerberos 1.2.3 sources.
i compiled the code with:
./configure --prefix=/usr/kerberos --enable-shared
--with-tcl=/usr/local --with-krb4
make all ran fine. reported no errors or warnings.
in the /etc/inetd.conf file on my system i have telnet and
krb5_prop
enabled for synchronization.
# Kerberos Services
telnet stream tcp nowait root /usr/kerberos/sbin/telnetd \
telnetd -a valid
krb5_prop stream tcp nowait root /usr/kerberos/sbin/kpropd kpropd
>How-To-Repeat:
here is the series of commands i issued to attempt login:
matthewg@crabgrass [matthewg]% /usr/kerberos/bin/kinit
Password for matthewg@LOTUS.COM:
matthewg@crabgrass [matthewg]% /usr/kerberos/bin/klist
Ticket cache: FILE:/tmp/krb5cc_12790
Default principal: matthewg@LOTUS.COM
Valid starting Expires Service principal
01/16/02 13:17:35 01/16/02 23:17:35 krbtgt/LOTUS.COM@LOTUS.COM
Kerberos 4 ticket cache: /tmp/tkt12790
klist: You have no tickets cached
Trying 9.95.18.57...
Connected to crabgrass.lotus.com (9.95.18.57).
Escape character is '^]'.
Waiting for encryption to be negotiated...
[ Kerberos V5 accepts you as ``matthewg@LOTUS.COM'' ]
done.
login name 'matthewg' too long
login:
if i perform the same commands for the root account, i do get
access
without any problems. i also tried to get system access with
krlogin,
and the same error appears with 'login name too long'.
i have not tested the username character limit.
when i was using krb-1.2.2 sources from MIT there were no
problems with ktelnet username length.
>Fix:
>Audit-Trail:
>Unformatted:
net
Matthew Glogowski
no
login name too long errors with remote access
serious
medium
krb-1.2.3
sw-bug
krb5-1.2.3
