[7434] in Kerberos
Re: v4/v5 interoperability
daemon@ATHENA.MIT.EDU (Dave McGuire)
Sun Jun 9 19:43:55 1996
Date: Sun, 9 Jun 1996 19:32:57 -0400
From: Dave McGuire <mcguire@rocinante.digex.net>
To: Sam Hartman <hartmans@MIT.EDU>
Cc: kerberos@MIT.EDU
In-Reply-To: Re: v4/v5 interoperability (Sam Hartman)
On June 9, you wrote:
> Dave> Folks, Can the new krb5 beat6 klogind really handle v4
> Dave> authentication like the install doc suggests? I can't seem
> Dave> to make it work, I keep getting "software caused connection
> Dave> to abort" problems. Any tips?
>
> Sure can. What is the line out of /etc/inetd.conf, what do
> you get if you telnet to the appropriate port with a non-kerberized
> telnet, and what does it syslog on the server?
Sam,
I just found out what was wrong...I hadn't checked the log (duh) and
upon looking there, I found out what was happening. I ran right smack
into the old "can't have a dot in a principal" krb4 problem. Agh!!!
:) I tried it against a different target machine and it works. I'm
using "/krb5/sbin/klogind -k -e", with an MIT krb4 pl10 rlogin client.
I just tried kshd with both krb4 and krb5 rsh clients, and it works
very well too. Great work!
On a related topic...How 'bout telnet? Should I be able use both
krb4 and krb5 there? Here's what happens when I try:
$ /usr/local/bin/telnet
telnet> toggle autologin
Will send login name and/or authentication information.
telnet> toggle authdebug
auth debugging enabled
telnet> open neurotica
Trying 204.91.10.10...
Connected to neurotica.neurotica.com.
Escape character is '^]'.
>>>TELNET: I support auth type 1 2
>>>TELNET: I support auth type 1 0
>>>TELNET: auth_send got: 02 06 02 02 02 00
>>>TELNET: He supports 2
>>>TELNET: He supports 2
>>>TELNET: He supports 2
>>>TELNET: Sent failure message
Password for mcguire:
-Dave McGuire
mcguire@digex.net
