| version 1.15, 2000/06/22 23:54:59 |
version 1.16, 2000/08/02 17:27:04 |
|
|
| if (r == RD_AP_UNDEC) { |
if (r == RD_AP_UNDEC) { |
| /* |
/* |
| * Probably didn't have a srvtab on |
* Probably didn't have a srvtab on |
| * localhost. Allow login. |
* localhost. Disallow login. |
| */ |
*/ |
| log("Kerberos V4 TGT for %s unverifiable, " |
log("Kerberos V4 TGT for %s unverifiable, " |
| "no srvtab installed? krb_rd_req: %s", |
"no srvtab installed? krb_rd_req: %s", |
| pw->pw_name, krb_err_txt[r]); |
pw->pw_name, krb_err_txt[r]); |
| |
goto kerberos_auth_failure; |
| } else if (r != KSUCCESS) { |
} else if (r != KSUCCESS) { |
| log("Kerberos V4 %s ticket unverifiable: %s", |
log("Kerberos V4 %s ticket unverifiable: %s", |
| KRB4_SERVICE_NAME, krb_err_txt[r]); |
KRB4_SERVICE_NAME, krb_err_txt[r]); |
|
|
| } |
} |
| } else if (r == KDC_PR_UNKNOWN) { |
} else if (r == KDC_PR_UNKNOWN) { |
| /* |
/* |
| * Allow login if no rcmd service exists, but |
* Disallow login if no rcmd service exists, and |
| * log the error. |
* log the error. |
| */ |
*/ |
| log("Kerberos V4 TGT for %s unverifiable: %s; %s.%s " |
log("Kerberos V4 TGT for %s unverifiable: %s; %s.%s " |
| "not registered, or srvtab is wrong?", pw->pw_name, |
"not registered, or srvtab is wrong?", pw->pw_name, |
| krb_err_txt[r], KRB4_SERVICE_NAME, phost); |
krb_err_txt[r], KRB4_SERVICE_NAME, phost); |
| |
goto kerberos_auth_failure; |
| } else { |
} else { |
| /* |
/* |
| * TGT is bad, forget it. Possibly spoofed! |
* TGT is bad, forget it. Possibly spoofed! |
![[BACK]](/icons/back.gif){kind=icon}
Return to auth-krb4.c CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / usr.bin / ssh