Problem with mod_auth_kerb after krb5 update

Hi, We are running a SLES 11 SP3 server in a virtual machine. Last week Suse released a patch (http://lists.opensuse.org/opensuse-security-announce/2015-11/msg7.html) for krb5. After applying the patch our apache server with mod_auth_kerb has stopped working correctly. A notice shows up i

AW: Problem with mod_auth_kerb after krb5 update

? I'm new at using mailing lists and don't know the best practice to do that. Thank you, Thomas -Ursprüngliche Nachricht- Von: Greg Hudson [mailto:ghud...@mit.edu] Gesendet: Donnerstag, 12. November 2015 21:18 An: Eichhorn, Thomas; 'kerberos@mit.edu' Betreff: Re: Problem

AW: AW: Problem with mod_auth_kerb after krb5 update

. November 2015 17:32 An: Eichhorn, Thomas; 'kerberos@mit.edu' Betreff: Re: AW: Problem with mod_auth_kerb after krb5 update On 11/13/2015 04:15 AM, Eichhorn, Thomas wrote: > I've posted the latest patch file [...] Thanks; I will follow up with SUSE's security contact address.

Kerberos and HTTP / HTTPS - Could Kerberos tickets be intercepted and misused?

Hi, We use Kerberos for SSO in our local intranet. We followed this tutorial: http://www.grolmsnet.de/kerbtut/ Everything works just fine. I have a question about security: Our intranet sites are delivered with HTTP. Can someone intercept the Kerberos ticket and use it for himself? Thanks in

AW: AD integration (ticket size) question

Hi, With Domain functional level "Windows Server 2012" comes a new Group Policy to set a maximum for the Kerberos SSPI context token buffer size. https://technet.microsoft.com/en-us/library/understanding-active-directory-functional-levels(v=ws.10).aspx https://technet.microsoft.com/en-us/librar

Problem with db master password migrating kerberos server to new machine

Hello Rainer, >> >> http://web.mit.edu/kerberos/krb5-latest/doc/admin/database.html?highlight=master#updating-the-master-key > >This solution looks promising. I simply created a new kerberos db, exported >the old one and imported everything on the new server. Using the old stash >file I am able

RE: Trouble shooting PAM error on RHEL 7.5

Hi, > /usr/lib64/security/pam_krb5.so: cannot open shared object file: No such file > or directory There should be a package called 'pam_krb5'. Seems like it's not installed on the system. Can you please check if it is installed on your server? Best regards, Thomas -Original Message-

RE: Trouble shooting PAM error on RHEL 7.5

--Original Message----- From: Eichhorn, Thomas Sent: Friday, June 29, 2018 7:51 AM To: 'Stephen B Goldman' ; kerberos Subject: RE: Trouble shooting PAM error on RHEL 7.5 Hi, > /usr/lib64/security/pam_krb5.so: cannot open shared object file: No such file > or directory There should be