Richard A Nelson wrote:
Package: heimdal-kdc
Version: 1.1-1
Severity: important
After the recent upgrade I noticed some of my scripts were failing,
and three machines all using the same krb5.conf (and ldap backend) were
returning different answers for kadmin list (three different realms)!
It took quite a bit of playing, getting nowhere before I wound up
stracing kadmind and found the problem.
With the new upstream, a patch apparently was not reworked, or a symlink
dropped ...
This following command fixed things for me
ln -sf /etc/heimdal-kdc/kdc.conf /var/lib/heimdal-kdc/kdc.conf
The following code in the postinst script should have avoided that:
# if not configured, try moving existing configuration
if [ ! -f /etc/heimdal-kdc/.configured ] &&
[ -f /var/lib/heimdal-kdc/.configured ]
then
for i in kdc.conf kadmind.acl
do
if [ -f /var/lib/heimdal-kdc/$i ]
then
mv /var/lib/heimdal-kdc/$i /etc/heimdal-kdc/$i
fi
done
mv /var/lib/heimdal-kdc/.configured /etc/heimdal-kdc/.configured
fi
I don't know why it didn't work for you.
It is possible that the log file and ACL file may not work though,
without the following changed at the top of kdc.conf:
[kdc]
log_file = FILE:/var/log/heimdal-kdc.log
acl_file = FILE:/etc/heimdal-kdc/kadmind.acl
I had forgotten at the time that kdc.conf is not a conffile (historic
reasons now, possibly should change that).
Brian May
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
