kinit should print an error if credentials cache has invalid permissions
Bug #740477 reported by
Alec Warner
This bug affects 3 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| krb5 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
Bug Description
Binary package hint: krb5-user
The obvious use case is a user does something silly such as:
sudo kinit -p <principal> and promptly makes a root:root ccache file for the specified principal.
Then the user later tries to kinit as that user and in fact everything *looks* fine...the kinit doesn't print any errors and returns 0. However the truth is nothing was done because the ccache is the wrong permissions.
klist prints an error well enough:
klist: Credentials cache permissions incorrect while setting cache flags (ticket cache FILE:/var/
-A
Revision history for this message
| James Page (james-page) wrote | #1 |
| Changed in krb5 (Ubuntu): | |
| status: | New → Incomplete |
Revision history for this message
| Russ Allbery (rra-debian) wrote | #2 |
| Changed in krb5 (Ubuntu): | |
| status: | Incomplete → Confirmed |
Revision history for this message
| Sam Hartman (hartmans) wrote Re: [Bug 740477] [NEW] kinit should print an error if credentials cache has invalid permissions | #3 |
| tags: | added: glucid lucid |
| tags: | removed: glucid |
To post a comment you must log in.
Thank you for taking the time to report this bug and helping to make Ubuntu better. Please execute the following command, as it will automatically gather debugging information, in a terminal:
apport-collect 740477
When reporting bugs in the future please use apport by using 'ubuntu-bug' and the name of the package affected. You can learn more about this functionality at https:/