From nobody@FreeBSD.org  Mon Sep 12 12:08:48 2005
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id A0DEF16A41F
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 12 Sep 2005 12:08:48 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 718B343D45
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 12 Sep 2005 12:08:48 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id j8CC8lX9030365
	for <freebsd-gnats-submit@FreeBSD.org>; Mon, 12 Sep 2005 12:08:47 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id j8CC8lYZ030359;
	Mon, 12 Sep 2005 12:08:47 GMT
	(envelope-from nobody)
Message-Id: <200509121208.j8CC8lYZ030359@www.freebsd.org>
Date: Mon, 12 Sep 2005 12:08:47 GMT
From: Benoit Panizzon <bp@imp.ch>
To: freebsd-gnats-submit@FreeBSD.org
Subject: kpasswd fails if one of the KDC are unreachable.
X-Send-Pr-Version: www-2.3

>Number:         86012
>Category:       bin
>Synopsis:       kpasswd(1) fails if one of the KDC are unreachable.
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Sep 12 12:10:10 GMT 2005
>Closed-Date:    
>Last-Modified:  Tue Sep 13 13:52:21 GMT 2005
>Originator:     Benoit Panizzon
>Release:        FreeBSD 5.3-STABLE #3
>Organization:
ImproWare AG
>Environment:
FreeBSD pinky.imp.ch 5.3-STABLE FreeBSD 5.3-STABLE #3: Wed Feb 23 09:38:05 CET 2005     root@pinky.imp.ch:/usr/obj/usr/src/sys/PINKY  i386
>Description:
When a Kerberos Domain Controller is reachable under various IP-Addresses)
ie. replicas or IPv4 and IPv6 and one address is not reachable for some
reason (like the Client System has an IPv6 Kernel but no IPv6 Address)
so that specific address returns 'no route to host' then kpasswd fails
as soon as it gets that reply instead of trying all available addresses.
>How-To-Repeat:
Get a Windows 2003 ADS Server. Enable IPv6 on that Server, so that
Windows puts it's own IPv6 Address as kpasswd TCP Service Announcement
in it's DNS. Try to change the Password from an IPv6 enabled but
unconfigured client. Voila. => Unknown error -1

Do a truss and you'll see that ony the IPv6 address is being tried and
kpasswd gives up as it sees the 'host unreachable' error.
>Fix:
Not a Fix but a Workaround: Use only with propperly configured IPv6 or
switch back to IPv4 only.
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->feedback 
State-Changed-By: linimon 
State-Changed-When: Mon Sep 12 21:54:20 GMT 2005 
State-Changed-Why:  
To which port does this PR apply? 

http://www.freebsd.org/cgi/query-pr.cgi?pr=86012 
Responsible-Changed-From-To: freebsd-ports-bugs->freebsd-bugs 
Responsible-Changed-By: linimon 
Responsible-Changed-When: Tue Sep 13 13:51:29 GMT 2005 
Responsible-Changed-Why:  
kpasswd is in /usr/bin as of 5.x. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=86012 
State-Changed-From-To: feedback->open 
State-Changed-By: linimon 
State-Changed-When: Tue Sep 13 13:52:09 GMT 2005 
State-Changed-Why:  
Feedback received. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=86012 
>Unformatted:
