Date: 07 Jul 1998 21:22:10 +0200 From: joda@pdc.kth.se (Johan Danielsson) To: dima@best.net Cc: ludwigp@bigfoot.com (Ludwig Pummer), security@FreeBSD.ORG Subject: Re: kerberos su problems betw 2 machines Message-ID: <xof3ecd5uvx.fsf@blubb.pdc.kth.se> In-Reply-To: dima@best.net's message of "Tue, 7 Jul 1998 12:10:37 -0700 (PDT)" References: <199807071910.MAA04769@burka.rdy.com>
next in thread | previous in thread | raw e-mail | index | archive | help
dima@best.net (Dima Ruban) writes: > Make sure, lookup on both IP addresses on your interfaces gives you > _the same_ name. I don't think this is the problem. In MIT Kerberos 5, you can get a working multi-homed configuration by making sure that the hostname has A records for all it's interfaces. In Kerberos 4 (which we are dealing with here), only has room for one ip-address in the ticket, and the KDC chooses that address based on the ip-address the request was sent from. /Johan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?xof3ecd5uvx.fsf>