Bug#515754: acknowledged by developer (closing 515754)
On 11/08/2011 07:32 PM, Ben Harris wrote:
> On Tue, 8 Nov 2011, Debian Bug Tracking System wrote:
>
>> This is an automatic notification regarding your Bug report
>> #515754: nfs-common: Mounting with sec=krb5p fails with "access denied
>> by server while mounting",
>> which was filed against the nfs-common package.
>>
>> It has been marked as closed by one of the developers, namely
>> Luk Claes <luk@debian.org>.
>
> Thank you for the notification. I presume this means that there is no
> bug in nfs-common, and that the inability to mount Kerberized
> filesystems from my Solaris server is intended behaviour. Is this a bug
> in Solaris that I should be chasing up with Oracle, or is it simply
> expected that non-Debian NFS servers will no longer work with Debian
> clients?
It has nothing to do with Debian/Linux or not. It's unfortunately about
making it harder to do less secure Kerberos based things which is mainly
something that changed in the kerberos library, but only works when the
NFS server knows how to use it.
So I'm afraid as a NFS packager I won't be able to do anything about it
as it's between the kerberos library and the server. You can probably
work around it by having a permitted_enctypes in the server, so the
kerberos library on the client does not try anything else AFAICS (more
info in the following bugreport:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622146).
Cheers
Luk
Reply to: