LinuxSecurity.com: It was discovered that Kerberos did not correctly free memory in theGSSAPI and kdb libraries. If a remote attacker were able to manipulatean application using these libraries carefully, the service couldcrash, leading to a denial of service. (Only Ubuntu 6.06 LTS wasaffected.) (CVE-2007-5902, CVE-2007-5971, CVE-2007-5972) [More...]
I've setup public key authentication for ssh'ing into my university machine. However, it only logs me in on the local machine and doesn't give me Kerberos credentials which I need for accessing my network folder.
LinuxSecurity.com: A vulnerability has been found and corrected in krb5:
Use-after-free vulnerability in kadmin/server/server_stubs.c in
kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote
authenticated users to cause a denial of service (daemon crash) via a
I have a web application (hostname: service.domain.com) and I wish to use Kerberos authentication to identify users that are logged into a Windows domain. Microsoft AD (Windows Server 2008 R2) is providing the Kerberos service.
The service is a Java web application using Spring Security Kerberos extension library to implement SPNEGO/Kerberos protocol.
I tried to configure nis with kerberos authentication, and i think i configured my server correctly coz i already configured nis with kerberos earlier and it was working fine but not today i getting error.
I configured kerberos on a debian box and tried using MIT kerberos for windows to log in. I get the following error:
cannot resolve network address for kdc in requested realm
I don't have a DNS server set up but though maybe the hosts file would handle any problems resolving hostname to ip address. Do I need DNS?