* Jeffrey E Altman [2021-09-11 23:44:19 -0400]:
> On 9/11/2021 10:57 PM, deb...@lewenberg.com wrote:
> > buster:
> > Trying 192.168.225.188 (port 7001):
> > AFS version: OpenAFS 1.8.2-1+deb10u1-debian 2021-07-21 root@buster-server
>
> This is a totally broken client because of the RX CID bug and
* Andreas Ladanyi [2017-04-06 10:05:19 +0200]:
> How is it possible to debug the way from calling pam setcred running
> aklog through the way to PAG ? Could the PAG and content be printed to
> the terminal ?
You could wrap a script around aklog that logs the PAG ID. Use the program=
option to the
* Benjamin Kaduk [2016-12-31 19:03:01 -0600]:
> The release notes are at
> http://openafs.org/dl/openafs/candidate/1.8.0pre1/RELNOTES-1.8.0pre1
The need to run akeyconvert on upgrade from 1.6 could be stated more
emphatically in the release notes (as an action item, not just a change
description
* Shadrach Smith [2016-06-30 17:10:45 +]:
> Thanks Ben,
>
> I'm trying to setup afs and kerberos in a way that when the users log in,
> they are automatically authenticated to kerberos and afs.
>
> I've tried different pam settings, and it doesn't seem like it is supposed to
> be
* Alexander Lazarević [2015-12-31 00:05:59 +0100]:
> I just recently upgraded to ubuntu 15.10 and I am using the openafs
> client 1.6.16-0ppa1~ubuntu15.10.2. With the switch to 15.10 I started to
> notice tokens to "disappear".
Ubuntu 15.10 "wily werewolf" uses libpam-afs-session 2.5-4.
* John Tang Boyland [2015-11-09 07:22:20 -0600]:
> My speaking of "precise" was wrong. Sorry for wasting people's time
> with that. Since I wrote the email, I've been informed that the machine
> is running Debian Squeeze. That is not supposed to EOL until 2/2016
> (according to my limited
* John Tang Boyland [2015-11-05 20:57:10 -0600]:
>We're trying to update our "precise" ubuntu systems with
> openafs-1.6.15. [...]
>
>I tried to build from source (./configure --with-linux-kernel-packaging)
> with simple "make; make install". The new kernel module
> was placed in
* Edgecombe, Jason [2015-04-08 14:34:40 +]:
According to the Wikipedia page, there seems to be one or two active FUSE
drivers for windows:
http://en.wikipedia.org/wiki/Filesystem_in_Userspace
Which ones are you referring to?
dokan: development ceased at the end of 2011, except for forks
* Yvan Masson [2015-01-27 09:48:46 +0100]:
Yes, pam_afs_session is in some pam files : common-auth, common-session
and common-session-noninteractive. These files are attached. Indeed, I
suppose something is wrong here.
I don't see anything obviously amiss, but these files don't tell the whole
* huangql [2014-12-24 17:46:19 +0800]:
I failed to restart afs service after I changed OPTIONS value in
/etc/sysconfig/afs file.
What was the old value, and what did you change it to?
At this time, I need to reboot the machine to make the new configuration
validate.
Are you saying that
* Jeffrey Altman [2014-08-13 15:55:42 -0400]:
On 8/13/2014 3:19 PM, Sergio Gelato wrote:
* Jeffrey Altman [2014-08-13 11:05:02 -0400]:
I believe that what you are asking for is not an include list but an
option to only perform DNS SRV/AFSDB queries for entries that exist in
the CellServDB
* Jeffrey Altman [2014-08-13 11:05:02 -0400]:
I believe that what you are asking for is not an include list but an
option to only perform DNS SRV/AFSDB queries for entries that exist in
the CellServDB without a server list.
Please remember to also fix bug #131895 if/when this is implemented.
* Benjamin Kaduk [2013-11-29 15:45:20 -0500]:
On Thu, 28 Nov 2013, dorian taylor wrote:
Hello List,
I'm trying to diagnose a persistent problem since I upgraded an old
Mac from 10.5 to 10.6 and installed the latest OpenAFS.
The exact number will be much more ueseful than just saying the
* Andrew Deason [2013-07-25 14:35:58 -0500]:
On Thu, 25 Jul 2013 15:22:50 -0400 (EDT)
Benjamin Kaduk ka...@mit.edu wrote:
On Thu, 25 Jul 2013, Sergio Gelato wrote:
I've been poking a bit into this. First of all, let's make sure I
don't misunderstand your expectation here: do you
* Ragnar Sundblad [2013-07-26 11:43:57 +0200]:
On 26 jul 2013, at 10:57, Sergio Gelato sergio.gel...@astro.su.se wrote:
Secondly, the following patch is required:
--- a/kdc/kerberos5.c
+++ b/kdc/kerberos5.c
@@ -183,9 +183,10 @@
}
}
if (clientbest != (krb5_enctype
* Ragnar Sundblad [2013-07-26 13:01:00 +0200]:
I believe you should change the test to also check that ret_key == NULL:
if (clientbest != ETYPE_NULL enctype == ETYPE_NUL ret_key ==
NULL) {
enctype = clientbest;
ret = 0;
}
since if there is no common
* Andrew Deason [2013-07-25 10:03:18 -0500]:
On Thu, 25 Jul 2013 09:11:38 -0400 (EDT)
step...@physics.unc.edu wrote:
In the cell rekeying instructions found at
http://openafs.org/pages/security/how-to-rekey.txt, there is a note
for sites using Heimdal KDCs. It mentions a bug present in
* Harald Barth [2012-12-11 23:07:07 +0100]:
Thanks. My next question is: if I do this, will it break existing
sessions using tokens obtained via afs@?
If you merge a new secret into the AFS key file on the server with a
new (high, say 10001) kvno, it should not. I have not tested this
* Gautam U Raut [2012-07-25 17:29:44 +0530]:
I have a Windows 7 x64 bit client machine and a valid KDC.
I have been provided a username and password for that KDC.
I have installed OpenAFS 1.7.15 client on this my client machine
along with Heimdal 1.5.
How about also installing Network
* Andrew Deason [2012-06-18 10:30:28 -0500]:
NetRestrict(5) still mentions that specifying 255 acts as a wildcard.
80fc888a9223050481de932233fe7121a48df194 removed one mention of that,
but the other remains; should both of them have been removed?
That was the impression I got when I last
* Ken Elkabany [2012-04-19 18:55:08 -0700]:
We have 2 OpenAFS servers running 1.4.14. We have many clients that we just
switched over to 1.6.1pre1.
[...]
Tainted: P O 3.2.0-23-virtual #36-Ubuntu
I've been informed that LP#975838 has been fixed, meaning that 1.6.1-1 will
soon be
* Harald Barth [2012-04-07 11:09:53 +0200]:
I'm doing this for my site.
As in su or in astro?
As in astro, for the time being. If others within su want to leverage
my work that can be arranged, but so far I haven't been asked.
It also has the duplicate NAT ping issue, which can cause
* Andrew Deason [2012-04-05 12:22:09 -0500]:
On Thu, 5 Apr 2012 17:20:03 +0200
Sergio Gelato sergio.gel...@astro.su.se wrote:
My reading of the Ubuntu wiki is that for serious bugs like the ones
in 1.6.0pre1 one can apply for a Stable Release Update.
one can as in, anyone? Or do we need
* Russ Allbery [2012-04-04 10:02:28 -0700]:
Jeffrey Altman jalt...@your-file-system.com writes:
On 4/3/2012 10:04 PM, Ken Elkabany wrote:
1.6.0pre1 which was packaged with Ubuntu 11.10. Should we make it a
priority to upgrade?
1.6.0pre1 is not an official OpenAFS release. It was a
* Derrick Brashear [2011-07-21 19:43:43 -0400]:
On Thu, Jul 21, 2011 at 5:32 PM, Derrick Brashear sha...@gmail.com wrote:
On Thu, Jul 21, 2011 at 5:31 PM, Sergio Gelato
sergio.gel...@astro.su.se wrote:
* Derrick Brashear [2011-07-21 09:55:51 -0400]:
On Thu, Jul 21, 2011 at 9:43 AM, Sergio
* Duncan S Kincaid [2010-07-30 15:39:41 -0400]:
Mac OS X firewall GUI is application-based. Would adding
/Library/OpenAFS/Tools/root.client/usr/vice/etc/afsd
[...] to the 'Allowed Applications' pane be sufficient
to ensure proper ports are opened?
Has anyone succeeded in making OpenAFS work
* Derrick Brashear [2011-07-21 09:55:51 -0400]:
On Thu, Jul 21, 2011 at 9:43 AM, Sergio Gelato
sergio.gel...@astro.su.se wrote:
Has anyone succeeded in making OpenAFS work with the Application Firewall
in Mac OS X? I've just tried with OpenAFS 1.6.0pre7 on a 10.6.8 system,
adding /usr/sbin
* Andrew Deason [2011-01-27 09:53:47 -0600]:
On Thu, 27 Jan 2011 15:15:02 +0100 (CET)
Harald Barth h...@kth.se wrote:
No Windows AD/KDC planned, but Windows clients integration with
standard KDC and possibly OpenAFS will be important.
Good luck with not needing an AD, but I think
* e c [2010-12-04 03:21:03 +0800]:
Hi guys,
I'm having problems running openafs-client on my desktop. I installed it
using sudo apt-get install openafs-client, and when I try sudo service
openafs-client start it just shows:
Starting AFS services:.
I would have expected
Starting
* Jeffrey Altman [2009-10-30 13:20:12 -0400]:
To address the use case properly there needs to be the ability to apply
additional sets of ACLs controlled entirely by the administrator.
Positive ACLs that give privileges that cannot be restricted and
negative ACLs that restrict privileges that
* Friedrich Delgado Friedrichs [2009-03-11 16:30:53 +0100]:
Today we noticed that the size of the incremental dumps is non-zero
for some volumes which have not changed in quite a while.
[...]
We found some other volumes that had not changed since March 9th, and
there doesn't seem to be a
* Alexander 'Leo' Bergolth [2009-02-23 12:12:55 +0100]:
On 02/11/2009 07:03 PM, Alexander 'Leo' Bergolth wrote:
First of all: Yes, I have disabled pam_keyinit.so. :-)
I am experiencing a very strange problem:
On my workstation, switching to root using su - (or just su) normally
* Madhusudan Singh [2008-10-27 09:39:50 -0700]:
I cannot cd into my own directory, so I ssh'ed into the server and issued
fs
Which authentication method did you use with ssh? Does GSSAPI work?
I have never really looked into this. I believe that I have ssh-krb5 or some
such thing
* Madhusudan Singh [2008-10-14 11:52:37 -0700]:
I am running the latest versions of openafs-modules-source, openafs-client
and openafs-krb5 on an up to date installation of Ubuntu Hardy. I used
modules-assistant to compile the kernel module against my kernel :
$ uname -r
* avison48 [2008-09-21 16:56:44 +]:
Thank you very much Sergio (and Jason for F9 pointer)!
I gave up on using the microsoft KDC server for now as someone suggested
followed the Fedora9 instructions to do as they do, own+operate RHEL kdc
server on the new (test) AFS server itself to get
* avison4
[2008-09-13 17:54:05 +]:
Sergio Gelato said
My favourite cell setup instructions are the ones that ship as part of
the Debian OpenAFS packages. The reason is that they don't require you
to use the -noauth switch.
When I looked at this, the only instructions for configure
* sabah salih [2008-03-25 13:47:23 +]:
I installed SL43 last week with heimdal
openafs-krb5-1.4.4-46.SL4
kernel-module-openafs-2.6.9-34.EL-1.4.0-8.SL
openafs-firstboot-1.2.11-5.SL
openafs-1.4.4-46.SL4
openafs-kpasswd-1.4.4-46.SL4
openafs-client-1.4.4-46.SL4
* Sergio Gelato [2007-12-08 18:42:43 +0100]:
* Alberto Paoluzzi [2007-12-07 06:48:12 +0100]:
Starting OpenAFS
Loading AFS kernel extensions
kextload: extension /var/db/openafs/etc/afs.kext is already loaded
Starting afsd
/Library/StartupItems/OpenAFS/OpenAFS: line 41: 1158 Bus
* Jeff Blaine [2007-04-12 17:02:04 -0400]:
I am getting a hard crash and system panic with OpenAFS
1.4.3 built on Solaris 9 SPARC. It happens right after
running 'sh /etc/init.d/afs start' and 'all afs daemons
started' is displayed.
bash-2.05# isainfo -b
32
Have you tried running a
* Gert Burger [2007-03-30 13:52:58 +0200]:
Brian Sebby wrote:
The main issue in backing up AFS is that you need to preserve the ACLs that
are stored in the directory structure - if you just back it up as files
you're going to lose that.
[...]
What we do (and I suspect many others) is to use
* Russ Allbery [2007-03-16 15:11:20 -0700]:
Jeff is talking about additional functionality that several of us would
like to add to the Kerberos KDC that lets you create a new key (and hence
a keytab and hence pre-populate the KeyFile) without having the KDC
immediately start using it for
* Steve Simmons [2007-03-15 13:03:44 -0400]:
On Mar 15, 2007, at 9:03 AM, Jose Angel Herrero wrote:
We have an afs cell (atc.unican.es) installed in a HP Proliand
DL380 G3 and Linux (Debian 3.0 r2) server. The afs partitions
(vicepxx) for this cell are located in a HP MSA20 (SATA disk
* Dr A V Le Blanc [2007-03-12 14:58:12 +]:
I wrote:
We have a very old AFS cell, installed with kaserver back in 1991,
and we later migrated to use heimdal instead of kaserver. This was
working well with Debian sarge installations, which were our standard
setup until recently. When
* ted creedon [2007-03-09 07:35:12 -0900]:
Kadmin needs des-cbc-crc:normal specifically with the :normal suffix.
N.B. scorch is using Heimdal (0.7 or 0.8?), not MIT Kerberos.
I'd suggest deleting the AES and Arcfour enctypes as well. This was
probably not an issue with the version of Heimdal in
* Jacob Volstrup [2007-02-15 17:02:49 +0100]:
Now I just have to find out how to let each cronjob run in their very
own environment. I have been looking at my pam configuration but cannot
seem to find any errors or solutions. Maybe I need another option in my
pam configuration?
I don't think
* Massimiliano Masi [2007-01-18 22:29:02 +0100]:
I would like to use GSSAPIAuthentication with ssh-krb5 package
on debian.
In addition to the good advice from Simon Wilkinson and Doug Engert,
you should be aware that the ssh-krb5 package in Debian sarge (there
is no such package in etch) needs
* Derrick J Brashear [2007-01-08 09:56:36 -0500]:
On Mon, 8 Jan 2007, Gianluca Cerminara wrote:
What shall I do then?
Install and configure kernel source to match your running kernel, and
build against it?
Googling for the correct configure steps on SuSE, it seems that
cd
* Christopher D. Clausen [2007-01-03 11:31:16 -0600]:
Jeffrey Altman [EMAIL PROTECTED] wrote:
If you are in a position to get a new entry added to the Linux
sys/statfs.h header file, please do so. I would suggest a value of
AFS_SUPER_MAGIC 0x5346414F
To be honest, I really don't think
* Gianluca Cerminara [2006-12-27 16:20:49 +0100]:
Hello,
I'm trying to build openafs 1.4.0 or 1.4.2 on my machine (x86) running
opensuse 10.2 (kernel 2.6.18.2-34-default).
I get the following error:
/home/cerminar/io/installazione/openafs-1.4.0/src/afs/LINUX/osi_machdep.h:55:2:
* Christopher D. Clausen [2006-10-30 01:29:38 -0600]:
Can someone running OpenAFS on Debian let me know if bos getlog works
for them?
It doesn't work out of the box, but a simple
ln -s /var/log/openafs /usr/afs/logs
fixes it.
___
OpenAFS-info
* David Howells [2006-10-27 00:18:15 +0100]:
Ah. Turning off dynroot permits the script to complete successfully.
I've put an updated script at:
http://people.redhat.com/~dhowells/openafs-1.4.setup.sh
That sets up an openafs server quite nicely:-)
Did you remember to turn dynroot
* David Geirsson [2006-08-11 14:11:52 +]:
Your message seems to have been delayed almost four weeks. I assume you
aren't subscribed to the list.
What I did was to create an 'ftp' user in kerberos and AFS, and extract
its kerberos key. I then have a small script in a cron job for the ftp
[Copying you since I'm not sure you're subscribed to the list.]
* Jose Calhariz [2006-04-08 20:30:50 +0100]:
I would like hear experiences about the best way to store the homedir
for all OS inside the volume of the user, and others special dirs like
web, mail, backups. I am searching in
* Derrick J Brashear [2006-04-07 02:43:09 -0400]:
On Thu, 6 Apr 2006, Rodney M Dyer wrote:
customer can download a source patch and recompile to fix a particular
problem, however it is still kind of irritating that no official patches
are issued. Eg, there's no place on the web site under
* Russ Allbery [2006-03-14 09:46:30 -0800]:
Jim Rees [EMAIL PROTECTED] writes:
It looks like this is the only format vos -time understands. Can anyone
think of a reason not to fix this?
Not I. -MM-DD is generally the best date format to use, since I think
it's unambiguous in
* Jeff Blaine [2006-02-15 13:50:52 -0500]:
/opt/SUNWspro/bin/cc -O -I/export/home/src/openafs-1.4.1-rc7/include
-I. -dy -Bdynamic -I. -c ./config.c
make[3]: /opt/SUNWspro/bin/cc: Command not found
I don't think this invalidates all the ideas about improving the
build scripts in any way, but
* Juha Jäykkä [2006-02-14 10:27:30 +0200]:
Keytabs are normally not supposed to be shared between multiple
machines, and this approach means that kadmind doesn't need to have the
capability of retrieving keys from the KDC, which is an additional
separation of capability and an additional
* Lars Schimmer [2006-02-10 15:03:51 +0100]:
So my job is to search for third party backup tools and use vos dump.
I need to think about a nice efficient system. In real only the home
folders are really of interest for long time backup, maybe a streamer is
to much of hardware for this. A DVD-R
* Ron Croonenberg [2006-01-28 12:46:17 -0500]:
I pxe booted the machines, used kickstart with the nfs way of installing
things including the OpenAFS
rpm's for the client install.
However, the newer versions of the OpenAFS rpms check to see what kernel they
are running on and if it
isn't
* Paul Johnson [2006-01-19 23:21:01 -0600]:
When I type
$ klog pauljohn
the system waits for between 40 and 50 seconds. THere are no errors,
and eventually the klog is approved. The connection is good and I can
move files in and out of /afs/ku.edu, our cell.
[...]
How to debug? Is
* Juha Jäykkä [2006-01-13 09:05:09 +0200]:
As what comes to kinit, its not setting the pag is a surprise to me after
all the praise of Heimdal's supposedly good integration with AFS.
Sometimes you want to start a new PAG, and sometimes you want to add or
refresh credentials in your current
* Juha Jäykkä [2006-01-11 13:19:57 +0200]:
I would have thought pam_krb5.so [1] does this by itself, but
It's only a PAM module for Kerberos. It doesn't know anything about
AFS.
I disagree. From its README:
o tokens
Create a new AFS PAG and obtain AFS tokens during the
* Douglas E. Engert [2006-01-04 14:19:56 -0600]:
Russ Allbery wrote:
Douglas E Engert [EMAIL PROTECTED] writes:
The sshd could accept a forwarded ticket for the sole purpose of using
it to get an AFS token so the sshd could access the .k5login file before
the krb5_kuserok was called (There
* Russ Allbery [2006-01-04 14:55:19 -0800]:
Sergio Gelato [EMAIL PROTECTED] writes:
As far as the screensavers' not running the account stack, I'd be more
worried about what happens when a Kerberos password has just expired
than about krb5_kuserok() being skipped: after all, the initial
* Jim Rees [2005-12-21 17:20:37 -0500]:
I don't know. It's whatever came with OpenBSD 3.6, so it would be at least
a year old.
Heimdal has had krb5-config since at least version 0.5, but OpenBSD's
customised makefile doesn't seem to build it. I checked OpenBSD 3.8,
which has Heimdal 0.6.3
* Dr A V Le Blanc [2005-11-23 15:09:33 +]:
The GSSAPI support in the recently released openssh 4.2 appears
mostly to do what we need: with proper configuration, an ordinary
user can pass Kerberos tickets to a remote machine, where a PAM
module gets tokens using aklog. So far as I can see,
* Coy Hile [2005-10-27 12:19:30 -0700]:
On Thu, 27 Oct 2005, E. Chris Garrison wrote:
Thanks for the suggestions, Coy.
It doesn't complain about any of those, but the afsd processes are
still running and 'modinfo' still shows the module.
I've seen the same thing here on my systems.
* Derrick J Brashear [2005-10-28 08:51:46 -0400]:
On Fri, 28 Oct 2005, Sergio Gelato wrote:
Precisely. Having recently tried to upgrade OpenAFS on a Solaris 8
test system via the modunload route, I can say that if AFS is in active
use there is a good chance of the modunload approach triggering
* Sensei [2005-10-11 16:22:56 +0200]:
Is anyone using openafs on ubuntu 5.04?
Not me, but I have a user who is running 5.10 on his laptop. Installing
the OpenAFS client was as easy as enabling the universe repository in
/etc/apt/sources.list, installing module-assistant and openafs-client
(and
* Sensei [2005-10-11 17:18:31 +0200]:
What I did is using the breezy packages (downloaded and forced dpkg),
but the scripts are really weird. Setting
OPTIONS=MEMORY
CACHESIZE=5
seem not to affect the init.d script, telling me that my partition is
not supported: it's an XFS
* Pucky Loucks [2005-09-22 17:11:53 -0700]:
if I release a volume is the release process atomic?
Yes. See
http://www.openafs.org/pages/doc/AdminGuide/auagd010.htm#HDRWQ192
what I'm wanting to do is have apache sever a site from afs, and
since I have a readonly on both fileserver apache
* Padiyath Sreekumaran [2005-09-19 09:49:17 +0200]:
I have installed openafs-client SW on a Debian Alpha machine.
My kernel version is
# uname -a
Linux lnsa14 2.2.20 #2 Wed Mar 20 19:57:28 EST 2002 alpha GNU/Linux
That's a rather old kernel. Debian sarge only ships 2.2 kernels for a
* Lars Schimmer [2005-09-09 12:16:12 +0200]:
I configured OpenAFS 1.4.0rc1 to obtain tickets via krb5 on login and
users get tickets on login, but aklog isn't run, so they only got
tickets, no tokens.
The Official Debian Way involves package libpam-openafs-session.
Use it as a session and/or
* Lars Schimmer [2005-08-27 12:44:58 +0200]:
Am I able to copy a volume from one cell to another?
I'm admin to both cells.
But vos dump or vos copy doesn't show anything like: from cell1 to cell2 ...
The following works for me:
vos dump SVOL -cell SCELL | vos restore DSERVER DPART
* Madhusudan Singh [2005-08-24 11:23:03 -0400]:
I ran the afs-newcell script :
Which version? Make sure you are using the one Russ posted on this list.
bos addhost omega omega -localauth ||true
bos: could not find entry (can't find cell 'default' in cell database)
I believe the new version
* Russ Allbery [2005-08-19 21:20:49 -0700]:
Attached. (Review from anyone else would also be welcome.)
A few minor comments follow. Overall, it looks good.
7. If the name of your Kerberos realm does not match the name of your
[...]
7. Create some space to use for AFS volumes. You can
* Madhusudan Singh [2005-08-12 15:34:14 -0400]:
Tokens held by the Cache Manager:
User's (AFS ID 2) tokens for [EMAIL PROTECTED] [Expires Aug 13 01:18]
--End of list--
omega:~# fs setacl /afs system:anyuser rl
fs: You don't have the required access rights on '/afs'
Yet again.
Yes,
* Madhusudan Singh [2005-08-15 13:26:45 -0400]:
My /etc/openafs/server/KeyFile was generated using asetkey from the supplied
keytab.
How do I check what is going on there ?
asetkey list, or use Heimdal's ktutil (package heimdal-clients):
ktutil -k
* Madhusudan Singh [2005-08-12 10:47:00 -0400]:
Why not follow the /usr/sbin/afs-newcell script that comes with Debian's
openafs-dbserver package? It's rumoured to have some problems, but they
are worth reporting. (See below.)
I am trying to get a feel of how the whole thing works, so I
* Christopher D. Clausen [2005-08-09 19:09:55 -0500]:
Even more testing has revealed that the libafs64.nonfs.o module works
just fine when the libafs64.o one does not. This is very weird. I can
only assume that this is due to some change in Solaris 10.
Am I going to run into weird NFS /
* Frank Burkhardt [2005-08-10 10:51:38 +0200]:
On Tue, Aug 09, 2005 at 10:01:01PM -0400, Madhusudan Singh wrote:
I was wondering if I could ask a few questions regarding AFS setup on
Debian.
I am trying to follow the instructions
* Derrick J Brashear [2005-06-20 08:20:16 -0400]:
On Mon, 20 Jun 2005, Christophe BERNARD wrote:
I was wondering if there exists a tool like slocate which can run on
openafs partitions.
If you mean directly on the fileserver, none exists, but it would be
possible to write one which
* Derrick J Brashear [2005-04-25 18:04:28 -0400]:
Well, or you can try a cvs head version of afs.
1.3.82 does seem to have cured the problem. Thanks again.
___
OpenAFS-info mailing list
OpenAFS-info@openafs.org
* [EMAIL PROTECTED] [2005-04-27 21:28:33 +]:
I'm setting up an AFS-cell with Kerberos authentification on Debian-sarge
with a 2.4.27 kernel.
The servers are already running, but I'm having trouble setting up the client.
I can't load the modules into the kernel. I don't have a clue what's
* Björn Ruberg [2005-04-25 15:25:13 +0200]:
Thanks for all your help, it seems as if all the problems have been solved.
Good for you.
I removed the preemtable-stuff out of the kernel (thanks for the tip, Jason)
and compiled openafs 1.3.81.
I solved the problem of the missing library by
* Chaskiel M Grundman [2005-04-25 14:14:25 -0400]:
--On Monday, April 25, 2005 13:11:53 -0400 Derrick J Brashear
[EMAIL PROTECTED] wrote:
I wonder if this is the inode semaphore the configure test was
(incompletely) added for in 1.3.81, maybe...
The inotify stuff does not appear in stock
* Kevin [2005-04-21 13:08:56 -0400]:
Realizing that this might be a questionable security practice, I'd like to
learn how to set up an afs volume that would be mounted in the afs tree and
that would act as a replacement for a locally mounted /tmp partition where
running processes could
* Lars Schimmer [2005-04-20 10:10:08 +0200]:
Scott Fritzinger schrieb:
| All,
|
| I'm having a bang your head against a wall problem when installing
| OpenAFS on Debian from the Debian repository.
First - which one? I strongly suggest the experimental sources and version
1.3.81 of
* Adam Megacz [2005-03-19 00:42:44 -0800]:
My only gripe with Kerberos is that two non-admin users can't set up a
trust/permissions relationship without involving their kerberos admins
(ie adding principals), or having a kerberos server in the first
place. Sometimes the former just isn't
* Lars Schimmer [2005-03-16 05:00:13 +0100]:
Thx for answer. The problem is NOT getting any tokens. I managed to
kinit, get my authentification from kerberos5 and I managed to aklog and
got my token.
So for my view I used: kinit user - OK
aklog - OK
After trying to list my token with tokens
* Lars Schimmer [2005-03-14 15:33:19 +0100]:
If you are really using 1.2.10, you are using a old version, even gentoo
should
have 1.2.13 packages (or the 1.3.7x).
Unfortunately, Gentoo's AFS maintainer seems to have gone to sleep.
Many bugs have been opened on bugzilla.gentoo.org about
* Hagbard Celine [2005-01-17 13:51:48 +0100]:
I thought too that /var/lib/openafs was the right guess, but seems
that the Horst suggestion to strace fileserver was wise.
In fact, from the strace:
open(/etc/openafs/server-local/NetRestrict, O_RDONLY) = -1 ENOENT (No such
fil
e or
* Sensei [2004-12-23 16:54:08 +0100]:
Has anyone got AFS working on suse 9.2 using their afs client? I had to
fix a script (it searched for kernel module libafs, actually the one
shipped with suse is called kafs) but anyway, afsd isn't starting:
Is kafs the OpenAFS implementation or
* Jeffrey Hutzelman [2004-11-22 16:25:23 -0500]:
However, for the moment you won't get PAG support if we can't find the
sys_call_table.
Which is why I'll try to make it find it, at least for my installations.
You want mps_linux26-new.diff from ticket #15645.
Thanks.
* Kevin [2004-11-20 13:10:20 -0500]:
I'm trying to build version 1.3.74 for ppc_linux26 and having some
problems.
Same thing but for the i386 counterpart (also Gentoo with 2.6.9).
I should be able to solve it all on my own, but your message happens
to catch me at an early stage in my effort.
* Derek Harkness [2004-11-01 11:53:40 -0500]:
I'm a little confused. Why does my home volume keep switching to
read-only, whenever I create a read-only replica of my root.cell?
My confusion mirrors yours. Unless your home volume is also replicated,
it shouldn't matter whether the root.cell
* Enric Font [2004-11-02 18:00:32 +0100]:
This instructions are taken from
http://www.openafs.org/pages/doc/QuickStartUnix/auqbg005.htm#HDRWQ50
That documentation may need revising. In any case, Debian users ought to
take a look at /usr/share/doc/openafs-*/ for distribution-specific guidance.
* Derek Atkins [2004-10-28 00:18:36 -0400]:
tab requires stat'ing the directory which has always been a no-no
in /afs... With dynroot it's a bit better, but it's still an issue
if you're not using dynroot.
I think you meant to write fakestat instead of dynroot.
* Maurizio Santini [2004-09-15 12:46:54 -0300]:
I've installed kerberos and got it work (I can get a ticket using kinit
or login from a terminal) but the problem is the AFS token that doesn't
get assigned.
Did you install MIT Kerberos or Heimdal?
Heimdal kinit has afslog support built-in (if
* Jimmy Engelbrecht [2004-04-07 18:44:04 +0200]:
Derrick J Brashear [EMAIL PROTECTED] writes:
Are the packaging scripts worth integrating into src/packaging?
What script ? :-)
So it sounds like there is more work to be done.
To really fit into the Solaris way of doing things, one should
1 - 100 of 101 matches
Mail list logo