Return to BSD News archive
Path: sserve!newshost.anu.edu.au!munnari.oz.au!constellation!paladin.american.edu!howland.reston.ans.net!pipex!sunic!trane.uninett.no!nac.no!ifi.uio.no!axelstep From: axelstep@ifi.uio.no (Axel-Stephane C. Smørgrav) Newsgroups: comp.unix.bsd Subject: Re: Kerberos on BSD Date: 18 Jan 1994 09:49:55 +0100 Organization: Dept. of Informatics, University of Oslo, Norway Lines: 26 Message-ID: <2hg7rj$r8m@nipling.ifi.uio.no> References: <2hbtnu$phs@news.csie.nctu.edu.tw> NNTP-Posting-Host: nipling.ifi.uio.no In article <2hbtnu$phs@news.csie.nctu.edu.tw>, yenchee@Jupiter.csie.nctu.edu.tw (Yeng-Chee Su) writes: > I just build a Kerberos on NetBSD by BSD Net/2's source. I found there > are some programs which differ from MIT's athena. What's it? I can't use > kpasswd to change password because of authetication probelm. I list the > log below. What's the problem? > > lawrence kpasswdd[1392]: krb_recvauth: Can't decode authenticator This could mean two things: Either the requested service is unable to retrieve it's own service key from the srvtab file (have you remembered to create a srvtab file with a service entry for kpasswdd??), or it is not able to decrypt the ticket/authenticator pair received in the request packet, probably because the ticket or authenticator were not encrypted with the service key. The service key in the srvtab file may not be the same as the one in the kerberos database (do an ext_srvtab). There is a last possibility that I encountered som time ago: you link your programs with different (incompatible) des-libraries. BTW: comp.protocols.kerberos might be the most appropriate group for questions regarding Kerberos. Axel-Stephane Smorgrav (axelstep@ifi.uio.no) ----------------------