[1431] in testers
Re: rt 7.2H: /etc/rc
daemon@ATHENA.MIT.EDU (daemon@ATHENA.MIT.EDU)
Fri Dec 14 16:11:38 1990
Date: Fri, 14 Dec 90 16:11:16 -0500
To: qjb@MIT.EDU
Cc: testers@MIT.EDU
In-Reply-To: Emanuel 'Jay' Berkenbilt's message of Fri, 14 Dec 90 15:14:00 -0500,
From: Richard Basch <probe@MIT.EDU>
I didn't quite take the patch supplied, but KRBSRV will be able to have
the realm name in 7.2J (in honor of Jay).
-Richard
From: qjb@ATHENA.MIT.EDU
Date: Fri, 14 Dec 90 15:14:00 -0500
System name: soup
Type and version: RTPC-ROMPC 7.2H
Display type: apa16
What were you trying to do?
Update my workstation; run mkserv kerberos as always
What's wrong:
/etc/rc does not properly handle the case when the local
realm is not the same as the realm for kerberos and
kadmin server are serving. This is a case fully
supported by kerberos (via the -r flags to the respective
servers). I have been running this way for several
releases.
What should have happened:
The changes to /etc/rc and /etc/rc.conf should allow
specification of kerberos realm. I have provided
patches below.
In addition, I consider it inappropriate to add this
significant a change and then procede to call the
release "frozen". I am running a configuration
supported my kerberos and a server supported by mkserv,
but yet I still have to hand-edit /etc/rc. I haven't
had to do this since the time when I was running afs in
release 6.2.
My patch involves setting KRBSRV to either "false" or to the
name of the realm. I have KRBSRV=SOUP.MIT.EDU in my rc.conf.
Here is the patch to /etc/rc. It assumes that you will not run
a kadmin server without also running a kerberos server; this is
a good assumption since the kadmin server accesses the dbm files
of the database directly (through libkdb).
