Package: libapache2-mod-auth-kerb Version: 5.3-5 Severity: important
Per Sourceforge bug #2802112 at http://tinyurl.com/lwtjrz , mod_auth_kerb versions <= 5.3 (including the current version in stable) experience intermittent authentication failures. I have reproduced these results on my own server, using Basic authentication. It appears as though Negotiate is unaffected by this behavior (I can provide a test site with kerberos accounts if necesssary). These authentication failures render the module completely unusable in my environment. Replacing the package with version 5.4 from upstream solves the problem. -- System Information: Debian Release: 5.0.1 APT prefers stable APT policy: (990, 'stable'), (500, 'proposed-updates'), (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.28.10-virt (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages libapache2-mod-auth-kerb depends on: ii apache2.2-commo 2.2.9-10+lenny2 Apache HTTP Server common files ii krb5-config 1.22 Configuration files for Kerberos V ii libc6 2.7-18 GNU C Library: Shared libraries ii libcomerr2 1.41.3-1 common error description library ii libkrb53 1.6.dfsg.4~beta1-5lenny1 MIT Kerberos runtime libraries libapache2-mod-auth-kerb recommends no packages. libapache2-mod-auth-kerb suggests no packages. -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
