[HCoop-Help] permission problems (ssh access with passwordless login)
Adam Megacz
megacz at hcoop.net
Tue Jun 30 10:34:33 EDT 2009
Andrew T <andrew at hcoop.net> writes:
> Wow. Now I am really embarrassed, since the solution is in the wiki:
No, don't be embarrassed -- I just added that to the wiki last night.
> klist showed that my tickets weren't forwardable. Using a "kinit -f"
> fixes the problems, since the "forwardable" flag is not in my
> /etc/krb5.conf.
Great. Now we know what to watch out for in the future.
The real root problem here is that if you attempt to delegate
non-forwardable tickets, the openssh client silently disobeys you
rather than logging some sort of error or warning. I will report this
as a bug against openssh.
- a
More information about the HCoop-Help
mailing list