Bug 157111 - [PATCH] pam_krb5 does not necessarily try to obtain tokens in your home directory's AFS cell
Summary: [PATCH] pam_krb5 does not necessarily try to obtain tokens in your home direc...
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 4
Classification: Red Hat
Component: pam_krb5
Version: 4.0
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
: ---
Assignee: Nalin Dahyabhai
QA Contact: Brian Brock
URL: http://www-personal.engin.umich.edu/~...
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2005-05-06 21:49 UTC by wingc
Modified: 2012-06-20 15:55 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2012-06-20 15:55:02 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)
pam_krb5: try to get a token in the cell containing the user's home directory (3.58 KB, patch)
2005-05-06 21:49 UTC, wingc
no flags Details | Diff

Description wingc 2005-05-06 21:49:43 UTC
Description of problem:

pam_krb5 only attempts to get a token for the workstation's local cell by
default, not the cell containing a user's home directory. Arguably, it should
try to get a token for the cell containing the user's home directory, if it
differs from the local cell.

Version-Release number of selected component (if applicable):

Tested on RHEL4, pam_krb5-2.1.2-1

How reproducible:

Always

Steps to Reproduce:
1. Configure a user with home directory in a different AFS cell than the
system's default AFS cell
2. Try to log in with pam_krb5
  
Actual results:

pam_krb5 obtains tokens for the system's default cell, not the cell containing
the user's home directory.

Expected results:

pam_krb5 should obtain a token for the user's home directory in all cases
(assuming the home directory in in AFS), else things are not going to work right.

Additional info:

A patch enhancing pam_krb5 so that it attempts to get a token for the user's
home directory (if different from the system's default cell) is available at:

http://www-personal.engin.umich.edu/~wingc/patches/pam_krb5/pam_krb5-2.1.2-homecell.patch

Comment 1 wingc 2005-05-06 21:49:43 UTC
Created attachment 114104 [details]
pam_krb5: try to get a token in the cell containing the user's home directory

Comment 2 Jiri Pallich 2012-06-20 15:55:02 UTC
Thank you for submitting this issue for consideration in Red Hat Enterprise Linux. The release for which you requested us to review is now End of Life. 
Please See https://access.redhat.com/support/policy/updates/errata/

If you would like Red Hat to re-consider your feature request for an active release, please re-open the request via appropriate support channels and provide additional supporting details about the importance of this issue.


Note You need to log in before you can comment on or make changes to this bug.