[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Server not found in database

To: Alex Schenkman <alex@melody.se>
Subject: Re: Server not found in database
From: joda@pdc.kth.se (Johan Danielsson)
Date: 13 Mar 2001 18:37:07 +0100
Cc: heimdal-discuss@sics.se
In-Reply-To: Alex Schenkman's message of "Tue, 13 Mar 2001 17:04:02 +0100"
References: <0103131711110Z.03532@marley>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.0807 (Gnus v5.8.7) Emacs/20.7

Alex Schenkman <alex@melody.se> writes:

> Do I need an entry in the database for my host as well ?

Yes, you need a keytab with the host's key. This is because login has
to verify that the krbtgt it got from the kdc is valid, and it does
that by getting a service ticket for the local host and then decrypts
it with the key stored on disk.

If this step is omitted, you can setup a fake kdc that responds to the
tgt request with a phony ticket, but still encrypted in your password.

/Johan

References:
- Server not found in database
  - From: Alex Schenkman <alex@melody.se>

Prev by Date: Server not found in database
Next by Date: Re: Server not found in database
Prev by thread: Server not found in database
Next by thread: Re: Server not found in database
Index(es):
- Date
- Thread