[33038] in Kerberos
Re: Kerberos5 + SSH Questions
daemon@ATHENA.MIT.EDU (Brian Candler)
Tue Jan 4 07:17:54 2011
Date: Tue, 4 Jan 2011 12:17:43 +0000
From: Brian Candler <B.Candler@pobox.com>
To: Lee Eric <openlinuxsource@gmail.com>
Message-ID: <20110104121743.GA4219@talktalkplc.com>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <AANLkTi=W80cRt9x2WKhNoOw-GqBdRu=z0zR2Pi1prAbF@mail.gmail.com>
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Tue, Jan 04, 2011 at 07:31:37PM +0800, Lee Eric wrote:
> So how do I know what client/server gets the idea of the server host
> name? It looks like reverse map works well and they can get the same
> IP/Address.
On the server, type "hostname". If it returns anything other than
ns.herdingcat.internal, correct it. Depending on your O/S this may be
something like
# echo "ns.herdingcat.internal" >/etc/hostname
# hostname ns.herdingcat.internal
On both the client and server, check that
$ dig ns.herdingcat.internal
$ dig -x 172.16.14.1
give the right results (names maps to IP, and IP maps to name).
Check /etc/hosts on both machines. Either there should be no entry for this
box, or if there is one, the FQDN should be the first listed name.
172.16.14.1 ns.herdingcat.internal # OK
172.16.14.1 ns.herdingcat.internal ns # OK
172.16.14.1 ns ns.herdingcat.internal # WRONG
Regards,
Brian.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
