LinuxQuestions.org - Kerberos authentication for telnet asks for password ..Help

- Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)

- - Kerberos authentication for telnet asks for password ..Help (https://www.linuxquestions.org/questions/linux-software-2/kerberos-authentication-for-telnet-asks-for-password-help-885128/)

sudipdutta1978

06-08-2011 02:26 AM

Kerberos authentication for telnet asks for password ..Help

Hi,

I have set up my KDC and telnet in the same server.

I am trying to telnet from a local PC . This is the output I am getting ..

[sudip@kdcclient root]$ telnet -a -F -x kdc
Trying 192.168.1.3...
Connected to kdc.example.local (192.168.1.3).
Escape character is '^]'.
Waiting for encryption to be negotiated...
[ Kerberos V5 accepts you as ``sudip/admin@EXAMPLE.LOCAL'' ]
[ Kerberos V5 accepted forwarded credentials ]
done.
Password:
Last login: Wed Jun 8 12:36:12 from kdc
[sudip@kdc ~]$

So why it is asking for password ? What I am missing here ?

John VV

06-08-2011 07:22 PM

telnet is not used anymore ( or should not be used) it is insecure

use ssh instead

ssh supports encryption

sudipdutta1978

06-09-2011 02:20 AM

Thank you for your suggestion John..

But in this case client requirement is telnet only, we cant help :cry:

TB0ne

06-09-2011 10:09 AM

Quote:

Originally Posted by sudipdutta1978 (Post 4380652)

Thank you for your suggestion John..

But in this case client requirement is telnet only, we cant help

First thing I'd do (since YOU will be responsible for this), is to advise the client properly. Telnet is a bad solution, and should be avoided. If you're not advising your client correctly, then the fault is your own when something goes bad.

If you must use it (and really, there are NO GOOD REASONS in 2011 for using telnet), have you enabled the krb5-telnet section in /etc/xinetd.d, and disabled the standard telnet??
http://aplawrence.com/Linux/enable_telnet.html

All times are GMT -5. The time now is 06:56 AM.