Displaying 1 result from an estimated 1 matches for "krb5cc_u1uid".
2005 Jun 29
3
sshd deletes the GSSAPI ticket on exit
...e exceptions.
1. And now a telnet user U1 comes along, logs into the server machine, and
does a kinit (on the server). There may be very good reasons for doing so,
and I will not go into those reasons here. We do not control those reasons
anyway. As a result of the kinit, a ticket file /tmp/krb5cc_U1uid is
created on the server (where U1uid is the UID of this telnet user).
2. Now user U1 logs in via SSH into this machine, this time with a
PublicKey. This will cause sshd to skip pam_authenticate(), and therefore
also skip the pam_setcred() call. As a result, the KRB5CCNAME variable will
re...