libkrb5-dev version 1.10-beta1 has broken RDNS support
Bug #1260845 reported by
Nathan Rosenblum
This bug report is a duplicate of:
Bug #571572: krb5 prefers the reverse pointer no matter what for locating service tickets. .
Edit
Remove
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
krb5 (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
The libkrb5-dev package provided for Precise is missing a critical bugfix in 1.10.2+ maintenance versions of MIT's Kerberos distribution which allows reverse DNS service principal name canonicalization to be disabled. The upstream ticket is here:
http://
In prior versions of libkrb5-dev, including the one currently available for Precise, the libkrb5.conf option `rdns=false` will have no effect.
To post a comment you must log in.
This is probably the same as bug 571572.
Technically the upstream patch is a workaround for a glibc bug. This is probably deserving of an SRU for Precise.