search for: tgts

...eeded. Will rasing the functional levels prevent any samba4 version from joining the domain? I would like to raise my current 2003 level to 2008 to take advantage of the following features. * Advanced Encryption Standard (AES 128 and AES 256) support for the Kerberos protocol. In order for TGTs to be issued using AES, the domain functional level must be Windows Server 2008 or higher and the domain password needs to be changed. For more information, see Kerberos Enhancements <http://technet.microsoft.com/library/cc749438%28WS.10%29.aspx>. * Last Interactive Logon...

Hi, I have two lists 1) List1- 30,000 rows and 104 columns 2) List2- a list of 14000 selected rownames  from List 1 Now, I want to extract all the 104 columns of List1  matching with the 14000 selected rownames from List2.  Psedocode will be something like this: match rownames(List2) with rownames(List1) extract selected matched 104 coloumns from (List1) strore in-> List3 So the

...odule ) Calculate the covariance matrix C=XXT and c*=Xx* for prediction y is centered and become y1 y*1=0 For h =1,2,3...hmax s=Cyh center s working scalar for prediction sample s*=c*Tyh orthogonalize s to previous t: for g=1,...(h-1), s=s-(tgTs/tgTtg)tg orthogonalize s* to previous t*: for g=1,...(h-1), s*=s*-(tgTs/tgTtg)t*g t*h=s* th=s th2=tTt betah=(tTyh)/th2 update yh+1=yh-betahth buid up prediction y*h+1=y*h+betaht*h end of cycle -----------------------------------...

...3404,0.3847,0.5571,0.5432,0.1326) dummy=c(rep( "m1", 7), rep( "m2", 3), rep( "m3", 5)) d= data.frame( y=y, x=x, dummy=dummy ); print(lm( y ~ as.factor(dummy) + x, data=d )) ## a simple fixed-effects model objective.xs <- function( b, m1, m2, m3, x, ydebug ) { tgts.mean= c(rep( m1, 7), rep( m2, 3), rep( m3, 5)); yhat= tgts.mean + b*x #debug cat("Parameters: b=", b, " m123=", m1, m2, m3, " leading to ", sum( (ydebug-yhat)^2 ), "\n") return( yhat ); } sameformula= (y ~ objective.xs(b, m1, m2, m3, x, y)) cat(&q...

Hi I'm having major problems setting up Samba 3.0.9 with kerberos authentication. I have also tried with 3.0.8(from Debian SID) with same result. smb.conf[1] has 'security = ads' , and 'use kerberos keytab = yes'. I have set up pam_krb5 and I get TGTs that works with my ssh servers. But, when I try to authenticate using smbclient -k -L server I get: "session setup failed: Call returned zero bytes (EOF)". Running smbd -i -d 10 ends up in this backtrace: name_to_fqdn: lookup for DAISY -> daisy. krb5_rd_req succeeded for principal d...

...shd AssignedTo: openssh-unix-dev at mindrot.org ReportedBy: jan.iven at cern.ch Since all of KRB4/KRB5 authentication (in protocol 1), TGT and AFS token forwarding are priviledged operations, all fail with privsep. The attached patch seems to fix this at least for KRB4 auth, KRB4 TGTs and AFS tokens (cannot try KRB5 here). Please review and consider for future inclusion. Thanks, Jan ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.

Hi, I managed to set up a Samba server that accepts Kerberos 5 TGTs via SPNEGO/GSSAPI for login. However, when I don't have a TGT it fails for Unix clients. It asks for username/password for Windows clients and then fails trying to do NTLMv2 authentication. How can I set up a Samba server that asks for username/password and then uses a Unix Kerberos KDC (Heimd...

.... The protections are intended for user accounts only, and service or computer accounts should not be added to the Protected Users group. User accounts added to the group are granted the following security protections: ?? * NTLM authentication is disabled. ?? * Kerberos ticket-granting tickets (TGTs) encrypted with RC4 are ???? not issued to or accepted from affected principals. Tickets ???? encrypted with AES, and service tickets encrypted with RC4, are ???? not affected by this restriction. ?? * The lifetime of Kerberos TGTs is restricted to a maximum of four ???? hours. ?? * Kerberos...

.... The protections are intended for user accounts only, and service or computer accounts should not be added to the Protected Users group. User accounts added to the group are granted the following security protections: ?? * NTLM authentication is disabled. ?? * Kerberos ticket-granting tickets (TGTs) encrypted with RC4 are ???? not issued to or accepted from affected principals. Tickets ???? encrypted with AES, and service tickets encrypted with RC4, are ???? not affected by this restriction. ?? * The lifetime of Kerberos TGTs is restricted to a maximum of four ???? hours. ?? * Kerberos...

.... The protections are intended for user accounts only, and service or computer accounts should not be added to the Protected Users group. User accounts added to the group are granted the following security protections: ?? * NTLM authentication is disabled. ?? * Kerberos ticket-granting tickets (TGTs) encrypted with RC4 are ???? not issued to or accepted from affected principals. Tickets ???? encrypted with AES, and service tickets encrypted with RC4, are ???? not affected by this restriction. ?? * The lifetime of Kerberos TGTs is restricted to a maximum of four ???? hours. ?? * Kerberos...

.... The protections are intended for user accounts only, and service or computer accounts should not be added to the Protected Users group. User accounts added to the group are granted the following security protections: ?? * NTLM authentication is disabled. ?? * Kerberos ticket-granting tickets (TGTs) encrypted with RC4 are ???? not issued to or accepted from affected principals. Tickets ???? encrypted with AES, and service tickets encrypted with RC4, are ???? not affected by this restriction. ?? * The lifetime of Kerberos TGTs is restricted to a maximum of four ???? hours. ?? * Kerberos...

Hello, I came across an interoperability problem in OpenSSH 3.0p1 and 3.0.1p1 concerning the AFS token forwarding. That means that the new versions are not able to exchange AFS tokens (and Kerberos TGTs) with older OpenSSH releases (including 2.9p2) and with the old SSH 1.2.2x. In my opinion this problem already existed in Openssh 2.9.9p1, but I have never used this version (I only looked at the source code when trying to find the reason for the problem). I already reported this problem to Markus...