[7632] in Kerberos
V4 Mac Telnet to V5b6 telnetd
daemon@ATHENA.MIT.EDU (Chris Trown)
Fri Jul 12 15:35:31 1996
To: kerberos@MIT.EDU
Date: 12 Jul 1996 18:32:29 GMT
From: ctrown@ecst.csuchico.edu (Chris Trown)
Hello!
I have managed to figure out my initial V4 Kerberos problems with the help
of Barry Jaspan. Thanks!
I have a different problem right now.
I am trying to get NiftyTelnet(NCSA Telnet would be nice too) using
Authman to talk to the telnetd that comes with krb5B6. The client connects to
the server, everything seems to be negotiated correctly, but everything hangs.
I started telnetd as root like so:
telnetd -a user -debug -edebug -D options 5556
I've tried it without the "-a" switch as well.
The tickets are being issued:
Jul 12 10:52:17 foobar syslog: PROCESS_V4:Initial ticket request Host: xxx.xxx.xxx.xxx User: "ctrown" ""
Jul 12 10:52:18 foobar syslog: PROCESS_V4:APPL Request ctrown.@NET.CSUCHICO.EDU on yyy.yyy.yyy.yyy for rcmd.foobar.net.csuchico.edu
The Mac seems to think everything is Kosher:
td: recv suboption ENCRYPT IS DES_CFB64 CFB64_IV xxx xxx xx xxx xxx xx xxx xxx
td: send suboption ENCRYPT REPLY DES_CFB64 CFB64_IV_OK
td: recv wont OLD-ENVIRON
td: send dont OLD-ENVIRON
td: recv suboption ENCRYPT REQUEST-START
td: recv suboption ENCRYPT SUPPORT DES_CFB64 DES_OFB64
td: send do TSPEED
td: send do XDISPLOC
td: send do OLD-ENVIRON
td: recv suboption ENCRYPT ENC_KEYID 0
td: send suboption ENCRYPT DEC_KEYID 0
td: recv wont TSPEED
td: recv wont XDISPLOC
td: recv wont OLD-ENVIRON
td: recv suboption ENCRYPT START
Output from telnetd shows:
>>>TELNETD: I will support DES_CFB64
>>>TELNETD: I will support DES_OFB64
CFB64: initial vector received
Initializing Decrypt stream
(*ep->is)(40008963, 9) returned MORE_TO_DO (7)
>>>TELNETD: He is supporting DES_CFB64 (1)
>>>TELNETD: He is supporting DES_OFB64 (2)
>>>TELNETD: (*ep->start)() returned 7
>>>TELNETD: in encrypt_wait
>>>TELNETD: Start to decrypt input with type DES_CFB64
At which point everything stops. It's almost as if it gets stuck on the
encryption part. I don't see it starting up /bin/login.
Non authenticated/encrypted telnet sessions work. I checked the path of
the login program which is /bin/login. I even tried point /bin/login to
login.krb5, same thing.
The system is running on a HP9000/715 running HPUX10.01.
Does anyone have any suggestions?
Chris...
--
-------------------------------------------------------------------------------
+ Chris Trown + CSRV Monkey Suit | Fly low +
+ ctrown@ecst.csuchico.edu + worn under | and avoid +
+ KD6EVS | '92 CBR600F2 + PROTEST! | the radar +
