[715] in Athena Bugs
6.0C /bin/login
daemon@ATHENA.MIT.EDU (probe@ATHENA.MIT.EDU)
Wed Aug 31 07:38:14 1988
From: <probe@ATHENA.MIT.EDU>
Date: Wed, 31 Aug 88 07:37:40 EDT
To: bugs@ATHENA.MIT.EDU, krbdev@ATHENA.MIT.EDU
Reply-To: Richard Basch <probe@ATHENA.MIT.EDU>
If you try rlogging into a machine with a srvtab and do not have
Kerberos "trusted" tickets (ie. not in the destination's .klogin file),
you will get the message:
... has not given you permission to login without a password
This is fine, except for the fact that when it does prompt you for a
password, it is considered incorrect. All subsequent attempts to login
when it comes back with "login:" also fail.
I have taken a look at the source code to /bin/login and have found no
errors in the logic. I also ran a test and gcore'd a login that was
compiled with -g and was waiting at the "Password:" prompt (above
scenario). It appears that a sizable portion of the program's data
space has been corrupted. For instance kflag, Kflag, and rflag are all
bogus, not to mention, lusername. I have not pursued this too far, but
it seems that it is quite likely that the error is probably in one of
the kerberos library routines.
-Richard
