Kerberos server guide: Do not use kerberos_example in documentation
Bug #1866839 reported by
Claudio Kuenzler
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
Ubuntu Server Guide | Status tracked in Bionic | |||||
Bionic |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
On the official and up to date Kerberos server guide page (https:/
sudo auth-client-config -a -p kerberos_example
Using this kerberos_example is a very bad idea as it will allow any local user to become root without additional authentication!
This should definitely be changed to something secure, as a lot of people (unfortunately) follow such guides in a blind manner.
For more information, see
- https:/
- https:/
To post a comment you must log in.
Thanks for filing this bug. I'm in the process of rewriting/checking the guides, and kerberos is in the list. I added this bug to my list of things to check.