[4038] in Athena Bugs
rlogin with kerberos tickets doesn't work
daemon@ATHENA.MIT.EDU (Jonathan I. Kamens)
Tue Jan 23 11:50:41 1990
Date: Tue, 23 Jan 90 11:50:17 -0500
From: Jonathan I. Kamens <jik@PIT-MANAGER.MIT.EDU>
To: geer@ATHENA.MIT.EDU
In-Reply-To: bugs[4037]
Cc: bugs@ATHENA.MIT.EDU
Further investigation will probably reveal that:
1. If you log in to dialup1 using telnet or rlogin.ucb, and then try
the kerberos rlogin again, it will work.
2. If you delete the srvtab file on dialup1, or try to rlogin with
kerberos tickets to a machine without a srvtab, it will work.
The problem factor here appears to be that if the machine in question
is *capable* of accepting kerberos rlogin's (i.e. it has a srvtab
file), AND the user trying to log in is not in the passwd file, then
all login attempts will fail.
Therefore, perhaps kerberos klogind should be smart enough to fall
back on rlogind or something if the user trying to log in isn't in the
passwd file? Just a guess, I don't really know what mechanisms
exactly are involved....
jik
P.S. If I kinit to testuser and then do a kerberos rlogin to dialup
(running 6.3B) when testuser isn't in the passwd file there, then
I am prompted for a password and allowed to log in. Therefore,
it seems that this problem is due to a change that was introduced
in 6.4R.
