[Freeipa-devel] [freeipa PR#381][opened] disable hostname canonicalization by Kerberos library
martbab
freeipa-github-notification at redhat.com
Mon Jan 9 16:29:55 UTC 2017
URL: https://github.com/freeipa/freeipa/pull/381
Author: martbab
Title: #381: disable hostname canonicalization by Kerberos library
Action: opened
PR body:
"""
By default, Kerberos client library attempts to canonicalize service
hostname in TGS requests. This can fail e.g. if hosts file on the client
machine references short names before FQDNs. In this case the short name
is used in TGS_REQ which KDC fails to resolve.
Since we do not (yet) support referencing hosts by their short names it
is safe to just disable this behavior in krb5.conf and use supplied
FQDNs.
https://fedorahosted.org/freeipa/ticket/6584
"""
To pull the PR as Git branch:
git remote add ghfreeipa https://github.com/freeipa/freeipa
git fetch ghfreeipa pull/381/head:pr381
git checkout pr381
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pr-381.patch
Type: text/x-diff
Size: 1272 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20170109/6c0729cd/attachment.bin>
More information about the Freeipa-devel
mailing list