LinuxSecurity.com: It was discovered that Kerberos did not correctly free memory in theGSSAPI and kdb libraries. If a remote attacker were able to manipulatean application using these libraries carefully, the service couldcrash, leading to a denial of service. (Only Ubuntu 6.06 LTS wasaffected.) (CVE-2007-5902, CVE-2007-5971, CVE-2007-5972) [More...]
I've setup public key authentication for ssh'ing into my university machine. However, it only logs me in on the local machine and doesn't give me Kerberos credentials which I need for accessing my network folder.
LinuxSecurity.com: A vulnerability has been found and corrected in krb5:
Use-after-free vulnerability in kadmin/server/server_stubs.c in
kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote
authenticated users to cause a denial of service (daemon crash) via a
I have a web application (hostname: service.domain.com) and I wish to use Kerberos authentication to identify users that are logged into a Windows domain. Microsoft AD (Windows Server 2008 R2) is providing the Kerberos service.
The service is a Java web application using Spring Security Kerberos extension library to implement SPNEGO/Kerberos protocol.
I tried to configure nis with kerberos authentication, and i think i configured my server correctly coz i already configured nis with kerberos earlier and it was working fine but not today i getting error.
I have Ubuntu server 12.04.1 64bit in a virtualbox VM using bridges networking under Mint14 following this guide to setup samba4 as an exercise of interest. (http://www.matrix44.net/cms/notes/gn...h-ubuntu-12-04)
All went well until I got to the Kerberos setup section and it failed to pass the testing mentioned in the guide.