port-mac68k: Problems with kerberos and andrew.

Subject: Problems with kerberos and andrew.
To: Advisor <advisor+@andrew.cmu.edu>
From: Christopher J Mason <cmason+@CMU.EDU>
List: port-mac68k
Date: 10/20/1996 02:12:26
I've just compiled an eBones kerberos 4 distribution, KTH-krb, for my
NetBSD/mac68k box.  It config'ed and compiled perfectly, with no errors.
 I can kinit to andrew and my tickets show up:

cmason@ros:/usr/athena/bin> klist
Ticket file:    /tmp/tkt10
Principal:      cjm@ANDREW.CMU.EDU

  Issued           Expires          Principal
Oct 20 01:03:34  Oct 20 11:03:34  krbtgt.ANDREW.CMU.EDU@ANDREW.CMU.EDU
Oct 20 01:22:24  Oct 20 11:07:24  rcmd.unix17@ANDREW.CMU.EDU

(this was actually after the output below)

but whenever I try to ftp to sun4 I get:

cmason@ros:/usr/athena/bin> ./ftp sun4
Connected to unix14.ANDREW.cmu.edu.
220 unix14.andrew.cmu.edu FTP server (Version wu-2.4.2-cmu(1) Mon Aug 26
16:49:19 EDT 1996) ready.
Trying KERBEROS_V4...
535 ADAT: Kerberos V4 krb_rd_req: Can't decode authenticator (krb_rd_req)
Server didn't accept auth data.
*** Using plaintext user and password ***


Incidentally, the kerberized telnet just _hangs_ my machine.  (I have a
(kernel) core if anyone wants it.)

Is there something I'm missing??  Is this an incompatibility in
software??  A known bug??  Shouldn't any working kerb4 implementation
work with andrew??

More information on KTH-krb is avaialable at http://www.pdc.kth.se/kth-krb/

TIA for any help any of you might be able to offer.

-c

PS, I just tried it again and got:

220 unix19.andrew.cmu.edu FTP server (Version wu-2.4.2-cmu(1) Mon Aug 26
16:49:19 EDT 1996) ready.
Trying KERBEROS_V4...
Error reading reply from server: Message integrity error (krb_rd_req).
*** Using plaintext user and password ***

Name (unix15.andrew:cmason): cjm
Message integrity error (krb_rd_req)
S:631
BA4AAAA1NTAyIEFsbCBjb21tYW5kcyBtdXN0IGJlIGVpdGhlciBNSUMgb3IgRU5DIHByb3RlY3
RlZC55gAJIN82WQcRuVVSVYfiteD8vsbt53oM7
ftp: Login failed.
Message integrity error (krb_rd_req)
...

but when I tried to ftp to ftp.andrew I got:


cmason@ros:/usr/athena/bin> ./ftp ftp.andrew
Connected to ftp.andrew.cmu.edu.
220 ftp.andrew.cmu.edu FTP server (Version wu-2.4.2-cmu(1) Mon Aug 26
16:50:31 EDT 1996) ready.
Trying KERBEROS_V4...
Kerberos login successful.

Name (ftp.andrew:cmason): cjm
S:333 Could not validate login permission for user cjm. Password required.
S:530 Login incorrect.
ftp: Login failed.
Remote system type is UNIX.
Using binary mode to transfer files.

Incidentally, ftp.andrew is a Decstation running ultrix, while
sun4.andrew is (are) Sun Sparc 4s running Solaris(??).  (ftp.andrew also
doesn't accept non-anon logins, so the login failed is as expected).
 _____________________________________________________________________
|Chris Mason - cmason@nyx.net  cmason@cmu.edu  http://ros.res.cmu.edu |
|"You can always count on a murderer for a fancy prose style."-Nabokov|
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~