[16110] in Athena Bugs
Re: Athena 8.2 ftpd bug
daemon@ATHENA.MIT.EDU (Miro Jurisic)
Thu Aug 6 14:58:50 1998
In-Reply-To: <199808061839.OAA13627@small-gods.mit.edu>
Date: Thu, 6 Aug 1998 14:57:46 -0400
To: Greg Hudson <ghudson@MIT.EDU>
From: Miro Jurisic <meeroh@MIT.EDU>
Cc: bugs@MIT.EDU, davie@MIT.EDU
At 2:39 PM -0400 8/6/98, Greg Hudson wrote:
>You do realize that we run ftpd with "-a off", right? That's so users
>will get credentials instead of just authenticating and not having any
>privileges on the remote end.
>
>We would like to have it use a "-a cred" like telnetd, so that if you
>send forwarded credentials you get tickets and tokens, and don't have
>to enter a username and password. My understanding is that the gssftp
>code in krb5 1.0 Just Doesn't Implement forwarded credentials right
>now.
Ok, so -a off is what I should use, as anything else is useless and just
drops my tickets on the floor. However, it is _still_ the case that if I
don't run ftpd with -a off, then ftpd's behavior violates RFC 2228 (if I
try to feed it forwarded credentials).
meeroh
meeroh@mit.edu | <http://www.mit.edu/people/meeroh/> | MIT I/S Mac developer
The most exciting phrase to hear in science, the one that heralds new
discoveries, is not "Eureka!" (I found it!) but "That's funny ..." -- Isaac
Asimov
