Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

Sam Hartman hartm...@debian.org writes: Hi. At today's release meeting, MIT indicated that they are going to set up an OSX X test environment to reproduce this problem. They will also look into whether we can ignore the PAC and remove it from the authdata if it fails to verify rather than

Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

This patch looks reasonable. I have not confirmed that successfully makes the PAC disappear, but if you've examined the logic there I'm happy to assume it does. -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact

Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

Sam Hartman hartm...@debian.org writes: This patch looks reasonable. I have not confirmed that successfully makes the PAC disappear, but if you've examined the logic there I'm happy to assume it does. On the other hand, we do appear to expose the krb5_pac_verify() interface that is called by

Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

forwarded 604925 http://krbdev.mit.edu/rt/Ticket/Display.html?id=6839user=guestpass=guest tags 604925 + confirmed upstream fixed-upstream thanks I committed a slightly different fix that avoids breaking the krb5_pac_verify() API. http://src.mit.edu/fisheye/changelog/krb5/?cs=24564 -- To

Processed: Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

Processing commands for cont...@bugs.debian.org: forwarded 604925 http://krbdev.mit.edu/rt/Ticket/Display.html?id=6839user=guestpass=guest Bug #604925 [libgssapi-krb5-2] Squeeze krb5 fails to work with Open Directory KDC tickets Set Bug forwarded-to-address to

Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

Hi. At today's release meeting, MIT indicated that they are going to set up an OSX X test environment to reproduce this problem. They will also look into whether we can ignore the PAC and remove it from the authdata if it fails to verify rather than failing the authentication. There was

Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

Package: libgssapi-krb5-2 Version: 1.8.3+dfsg-2 Severity: grave File: /usr/lib/libgssapi_krb5.so.2 My system uses kerberos to authenticate users to ssh. After upgrading a server to squeeze logging in is no longer possible (this could satisfy critical severity). Unfortunately debugging this turned

Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

tags 604925 moreinfo severity 604925 normal thanks I'm guessing the no such file or directory is probably spurious. What's probably happening is that something in libkrb5 or libgssapi_krb5 is returning -1 in a context where the library belives it is a system call that sets errno. However that's

Processed: Re: Bug#604925: /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze

Processing commands for cont...@bugs.debian.org: tags 604925 moreinfo Bug #604925 [libgssapi-krb5-2] /usr/lib/libgssapi_krb5.so.2: cannot login to ssh after upgrade from lenny to squeeze Added tag(s) moreinfo. severity 604925 normal Bug #604925 [libgssapi-krb5-2] /usr/lib/libgssapi_krb5.so.2: