[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#780108: marked as done (libapache2-mod-auth-kerb: Fail to authenticate when the user's password contains special characters)

Your message dated Fri, 05 Apr 2024 17:27:47 +0000
with message-id <[🔎] E1rsnLv-00Fr8g-I4@fasolo.debian.org>
and subject line Bug#1068262: Removed package(s) from unstable
has caused the Debian Bug report #780108,
regarding libapache2-mod-auth-kerb: Fail to authenticate when the user's password contains special characters
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
780108: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780108
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message --- 
Package: libapache2-mod-auth-kerb
Version: 5.4-2
Severity: important

Dear Maintainer,
We found that some users of our kerberos enabled http server were unable to login although other users were able to do it.
After some kerberos testing we realized that the problem was not in the kerberos configuration.
The problem is that if the user has a complex password (including regional chars:  Ñ Ç ) then, the user is unable to authenticate.

Error shown in apache logs: krb5_get_init_creds_password() failed: Preauthentication failed

If the user enters a wrong password, then the error is slightly different (but is a correct shown error):

krb5_get_init_creds_password() failed: Client not found in Kerberos database

Thanks in advance for your help and hard work!


-- System Information:
Debian Release: 7.8
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/1 CPU core)
Locale: LANG=es_ES.UTF-8, LC_CTYPE=es_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libapache2-mod-auth-kerb depends on:
ii  apache2.2-common  2.2.22-13+deb7u4
ii  krb5-config       2.3
ii  libc6             2.13-38+deb7u6
ii  libcomerr2        1.42.5-1.1
ii  libgssapi-krb5-2  1.10.1+dfsg-5+deb7u2
ii  libk5crypto3      1.10.1+dfsg-5+deb7u2
ii  libkrb5-3         1.10.1+dfsg-5+deb7u2

libapache2-mod-auth-kerb recommends no packages.

libapache2-mod-auth-kerb suggests no packages.

-- no debconf information

--- End Message ---
--- Begin Message --- 
Version: 5.4-3+rm

Dear submitter,

as the package libapache-mod-auth-kerb has just been removed from the Debian archive
unstable we hereby close the associated bug reports.  We are sorry
that we couldn't deal with your issue properly.

For details on the removal, please see https://bugs.debian.org/1068262

The version of this package that was in Debian prior to this removal
can still be found using https://snapshot.debian.org/.

Please note that the changes have been done on the master archive and
will not propagate to any mirrors until the next dinstall run at the
earliest.

This message was generated automatically; if you believe that there is
a problem with it please contact the archive administrators by mailing
ftpmaster@ftp-master.debian.org.

Debian distribution maintenance software
pp.
Thorsten Alteholz (the ftpmaster behind the curtain)

--- End Message ---
Reply to: