[14464] in Kerberos
Re: KRB5 daemon problems
daemon@ATHENA.MIT.EDU (Dan Million)
Mon May 21 14:11:28 2001
From: Dan Million <lio@ornl.gov>
Date: Mon, 21 May 2001 13:41:03 -0400
Message-ID: <3B09532F.CC1CEB33@ornl.gov>
To: kerberos@MIT.EDU
Dan Million wrote:
>
> I've got a couple of problems with KRB5 1.2.2 daemons.
> If anyone else has encountered these and found how to fix
> them, I would appreciate some tips.
>
> The klogind running on AIX 4.3.3 has a problem when using
> encryption (-x). If you hit ^C in your login session, it
> locks up tight as a drum. The daemon has to be killed on
> the remote host to get rid of it. This does not happen
> when encryption is not used, nor does it happen on non-AIX
> platforms.
>
> Also, both klogind and telnetd tend to create terminal
> sessions on the remote host with the eof character set
> to ^A instead of ^D. A minor irritant, but an irritant
> nonetheless.
While working another issue, Tom Yu told me that login.krb5
was supposed to set the correct file permissions on forwarded
credentials. I modified my remote host to use login.krb5,
and whaddaya know, it also got rid of the "eof=^A" problem.
This is on an AIX system, and at some point in the past, I
thought the prevailing wisdom was, "login.krb5 doesn't work
well on AIX, so symlink it to /usr/bin/login." And that's
what I've been doing ever since. Has that caveat gone away?
Is anyone else out there even using AIX? Hello? [Insert
sound of crickets chirping here...]
I still have the problem of encrypted rlogin hanging after
a ^C, but at least one mystery has been solved.
Dan
