[16030] in Athena Bugs
Re: Host Explorer and Athena 8.2
daemon@ATHENA.MIT.EDU (a plumb line among my people)
Sat Jul 18 00:18:38 1998
Date: Sat, 18 Jul 1998 00:11:22 -0400
To: "Thomas H. Grayson" <thg@MIT.EDU>
From: a plumb line among my people <mbarker@MIT.EDU>
Cc: bugs@MIT.EDU, jdevans@MIT.EDU, crlhelp@MIT.EDU, f_l@MIT.EDU
In-Reply-To: <199807161441.KAA22974@palladio.MIT.EDU>
At 10:41 AM 7/16/98 -0400, Thomas H. Grayson wrote:
:)The Hummingbird Host Explorer program for Windows (for which MIT has a site
:)license) cannot make a kerberos-encrypted telnet connection to machines
:)running the Athena 8.2 early test. I've tested this with two machines, aalto
:)(Sun) and mansard (SGI). The problem may have to do with the move to
Kerberos
:)5 in the new release; Host Explorer supports only Kerberos 4 right now.
:)
:)Tom Grayson
:)
Hello Tom. The basic problem is that the current host Explorer program
asserts that it can do Kerberos 5, but then gets confused when the telnetd
actually tries to do Kerberos 5. We are trying to get an upgraded Host
Explorer out to the field, but it is taking longer than desirable.
Unfortunately, we do not want to hold back the Athena Kerberos 5 changes for
another year -- a new Host Explorer should be available much sooner. In the
meantime, for private machines we suggest:
a) change the telnetd entry in inetd.conf to run
"telnetd -X KERBEROS_V5" so it won't offer krb5 auth
b) as with b), but on a non-standard port so other users can still
do krb5
c) tell their windows users to use the Cygnus krb5 ktelnet
d) grab the dialup telnetd
For myself, on my office workstation, I changed inet.conf. It works very well.
I hope this helps.
Mike Barker
MIT Information Systems
