canonicalize fallback bug in krb5-user prevents ssh with older KDC
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
krb5 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Hi,
Upgrading from Natty to Oneiric upgrades krb5-user from version 1.8.3+dfsg-
debug1: Unspecified GSS failure. Minor code may provide more information
KDC can't fulfill requested option
Googling seems to indicate that this is a known bug in the 1.9.1 series of the Kerberos library, and that it has been resolved for 1.9.2. Compare the bug reports in RHL (https:/
This is a fairly urgent bug because it completely prevents Kerberized SSH connection to any nodes using an older KDC.
Thanks.
Status changed to 'Confirmed' because the bug affects multiple users.