Date: Fri, 21 Oct 2005 17:10:39 +0200 (CEST) From: Harti Brandt <hartmut.brandt@dlr.de> To: Stijn Hoop <stijn@win.tue.nl> Cc: hackers@freebsd.org Subject: Re: telnetd/sshd and Kerberos tickets (PAM) Message-ID: <20051021170843.A6955@beagle.kn.op.dlr.de> In-Reply-To: <20051021141752.GQ6916@pcwin002.win.tue.nl> References: <20051021160017.D4007@beagle.kn.op.dlr.de> <20051021141752.GQ6916@pcwin002.win.tue.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 21 Oct 2005, Stijn Hoop wrote:
SH>On Fri, Oct 21, 2005 at 04:08:14PM +0200, Harti Brandt wrote:
SH>> I have enabled the pam_krb5 module in pam.d/{login,telnetd,sshd}. When
SH>> login in locally I get a Kerberos ticket as I would expect. When logging
SH>> in via ssh or telnet I don't get one. I have digged around in the sources
SH>> and it locks like telnetd never calls pam_setcred() which would do this
SH>> work. My PAM-foo is rather limited so my question is: shouldn't sshd and
SH>> telnetd call pam_setcred() somewhere?
SH>
SH>WRT sshd I bugged des@ about this but did not receive an answer :( See
SH>the attached mail.
Hmm. I digged around a little bit and found something:
http://bugzilla.mindrot.org/show_bug.cgi?id=789
>From a first glance it seems that this bug was introduced by fixing
another bug.
harti
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20051021170843.A6955>