Description of problem: Version 5.0RC7 was released the other week. It is supposed to solve the following problem (from the 1.109 changelog): Only reply with the Negotiate set if the gss_accept_sec_context returned data for the client. Otherwise the client received an Negotiate header and tried to authenticate using GSSAPI again and again, which is annoying when the user in question pass the authentication but isn't authorized.
rc7 can go in as an FC5 update, it's too late for FC5 final now; but clients should really cope with that correctly - what did you see this with, Firefox?
FC5 has been postponed to the 20th, any chances this could still make it? We saw this with Firefox. One of our users had restricted access to a directory. Rebuilding manually the rpm with the rc7 sources made the problem go away for us.
In the meantime, 5.0 final and 5.1 have been released upstream. Can either of the two releases make it for FC6?
Now fixed in FC6. Thanks!