From owner-freebsd-questions@freebsd.org Fri Jul 21 17:06:10 2017 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 4BB17DAC443 for ; Fri, 21 Jul 2017 17:06:10 +0000 (UTC) (envelope-from holin@iki.fi) Received: from vs20.mail.saunalahti.fi (vs20.mail.saunalahti.fi [62.142.117.197]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "vs20.mail.saunalahti.fi", Issuer "vs20.mail.saunalahti.fi" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 0130676981 for ; Fri, 21 Jul 2017 17:06:09 +0000 (UTC) (envelope-from holin@iki.fi) Received: from vs20.mail.saunalahti.fi (localhost [127.0.0.1]) by vs20.mail.saunalahti.fi (Postfix) with ESMTP id D52FF2007B for ; Fri, 21 Jul 2017 20:06:00 +0300 (EEST) Received: from gw01.mail.saunalahti.fi (gw01.mail.saunalahti.fi [195.197.172.115]) by vs20.mail.saunalahti.fi (Postfix) with ESMTP id CA8EE20095 for ; Fri, 21 Jul 2017 20:06:00 +0300 (EEST) Received: from [10.0.0.7] (62-78-248-13.bb.dnainternet.fi [62.78.248.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by gw01.mail.saunalahti.fi (Postfix) with ESMTPSA id BF43D40588 for ; Fri, 21 Jul 2017 20:05:59 +0300 (EEST) To: freebsd-questions@freebsd.org From: Heikki Lindholm Subject: kerberized nfs Message-ID: Date: Fri, 21 Jul 2017 20:06:03 +0300 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.23 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 21 Jul 2017 17:06:10 -0000 Hello list, I'm trying to mount a kerberized NFSv4 share on FreeBSD 11. It's an experimental setup without DNS; only /etc/hosts based lookup. I can't even get kinit to work and, expectedly, mounting also fails. The problem is that kinit stubbornly tries to get the kerberos kdc records from DNS, although the server's ip is specified in /etc/hosts and it's in krb5.conf and additionally krb5.conf is set to not do any DNS lookups. So, I installed MIT kerberos and that version of kinit works fine, but the problem then is, how to make mount use the MIT version? Regards, Heikki Lindholm