[Bug 293433] [NEW] ecryptfs-utils does not work with LDAP/Kerberos users

Mon, 03 Nov 2008 19:46:05 -0800 

Public bug reported:

Ubuntu version: Intrepid 8.10
eCrypt-utils version: 53-1ubuntu12
slapd version: 2.4.11-0ubuntu6
krb5-* version: 1.6.dfsg.4~beta1-3

All my users use OpenLDAP and MIT Kerberos5 to login, pam.d common-* and
ldap.conf files are correctly configured, e.g. ldapwhoami reports:

[EMAIL PROTECTED]:~$ ldapwhoami 
SASL/GSSAPI authentication started
SASL username: [EMAIL PROTECTED]
SASL SSF: 56
SASL data security layer installed.
dn:uid=testuser,ou=people,dc=xxxxx,dc=com

klist reports:
Default principal: [EMAIL PROTECTED]

Valid starting     Expires            Service principal
11/04/08 14:21:28  11/05/08 14:21:28  krbtgt/[EMAIL PROTECTED]
11/04/08 14:27:42  11/05/08 14:21:28  ldap/[EMAIL PROTECTED]

When using the tools from the ecryptfs-utils package such as:
ecryptfs-setup-private  I get the following error:
ERROR: User [xxx] does not exist

e.g:

[EMAIL PROTECTED]:~$ ecryptfs-setup-private
ERROR: User [testuser] does not exist

This user only appears in LDAP and SASLAUTHD with Kerberos providing
password auth.

This becomes an issue when using dovecot-auth, e.g:

Nov  4 14:30:10 dj-dvant-server dovecot-auth: pam_ldap: error trying to bind as 
user "uid=testuser,ou=people,dc=xxxxx,dc=com" (Invalid credentials)
Nov  4 14:30:10 dj-dvant-server dovecot-auth: pam_sm_authenticate: Called 
Nov  4 14:30:10 dj-dvant-server dovecot-auth: pam_sm_authenticate: username = 
[testuser] 
Nov  4 14:30:10 dj-dvant-server dovecot-auth: Error attempting to parse 
.ecryptfsrc file; rc = [-5]
Nov  4 14:30:10 dj-dvant-server dovecot-auth: Unable to read salt value from 
user's .ecryptfsrc file; using default 
Nov  4 14:30:10 dj-dvant-server dovecot-auth: Error attempting to open 
[/home/testuser/.ecryptfs/wrapped-passphrase] for reading 
Nov  4 14:30:10 dj-dvant-server dovecot-auth: Error attempting to unwrap 
passphrase from file [/home/testuser/.ecryptfs/wrapped-passphrase]; rc = [-5] 
Nov  4 14:30:10 dj-dvant-server dovecot-auth: Error adding passphrase key token 
to user session keyring; rc = [-5]

** Affects: ecryptfs-utils (Ubuntu)
     Importance: Undecided
         Status: New

-- 
ecryptfs-utils does not work with LDAP/Kerberos users
https://bugs.launchpad.net/bugs/293433
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to