From nobody  Wed Oct 23 19:34:35 1996
Received: (from nobody@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id TAA00650;
          Wed, 23 Oct 1996 19:34:35 -0700 (PDT)
Message-Id: <199610240234.TAA00650@freefall.freebsd.org>
Date: Wed, 23 Oct 1996 19:34:35 -0700 (PDT)
From: sef@kithrup.com
To: freebsd-gnats-submit@freebsd.org
Subject: kerberos login encryption incompatible with all other Keberos servers
X-Send-Pr-Version: www-1.0

>Number:         1873
>Category:       bin
>Synopsis:       kerberos login encryption incompatible with all other Keberos servers
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-bugs
>State:          closed
>Quarter:
>Keywords:
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Oct 23 19:40:05 PDT 1996
>Closed-Date:    Sat Feb 22 14:57:41 PST 1997
>Last-Modified:  Sat Feb 22 14:58:26 PST 1997
>Originator:     Sean Eric Fagan
>Release:        2.1.5-RELEASE
>Organization:
Kithrup Enterprises, Ltd.
>Environment:
FreeBSD garth.kithrup.com 2.1.5-RELEASE FreeBSD 2.1.5-RELEASE #2: Fri Oct 18 20:40:55 PDT 1996

>Description:
FreeBSD's version of eBones (aka Kerberos) is incompatible with every
other version of Kerberos I can test -- Cygnus CNS, MIT KerberosIV, and
FreeBSD-1.0-Current (aka 1.1++, due to patches).  The incompatibility
shows up when doing an encrypted rlogin from the 2.1.5 system to the
other systems.  As FreeBSD-1.0-Current (aka "kithrup") and Cygnus CNS
(aka "cygnus") and MIT KerberosIV (aka "mit") are all able to work in
this fashion, the incompatibility lies with 2.1.5.

>How-To-Repeat:
kinit
rlogin -xL8 <kerberos machine>

>Fix:

>Release-Note:
>Audit-Trail:

From: Garrett Wollman <wollman@lcs.mit.edu>
To: freebsd-gnats-submit@freebsd.org
Cc:  Subject: bin/1873: kerberos login encryption incompatible with all other Keberos servers
Date: Thu, 24 Oct 1996 11:26:49 -0400

 <<On Wed, 23 Oct 1996 19:34:35 -0700 (PDT), sef@kithrup.com said:
 
 > kinit
 > rlogin -xL8 <kerberos machine>
 
 I just wanted to repeat for the record that I am unable to replicate
 this in either direction with an honest-to-God MIT Kerberos
 installation.  The only question I think might come up would be the
 function of the (mostly undocumented) `-L' flag, which is not present
 in our Ultrix krlogin.
 
 -GAWollman
 
 --
 Garrett A. Wollman   | O Siem / We are all family / O Siem / We're all the same
 wollman@lcs.mit.edu  | O Siem / The fires of freedom 
 Opinions not those of| Dance in the burning flame
 MIT, LCS, ANA, or NSA|                     - Susan Aglukark and Chad Irschick
State-Changed-From-To: open->closed 
State-Changed-By: mpp 
State-Changed-When: Sat Feb 22 14:57:41 PST 1997 
State-Changed-Why:  
sef says that he has already fixed this, but forgot to close the PR :-). 
>Unformatted:
