LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Non-*NIX Forums > Programming
User Name
Password
Programming This forum is for all programming questions.
The question does not have to be directly related to Linux and any language is fair game.

Notices


Reply
  Search this Thread
Old 03-19-2013, 02:25 PM   #1
harig
LQ Newbie
 
Registered: Jun 2012
Posts: 10

Rep: Reputation: Disabled
RPC: Authentication error; why = Client credential too weak


OS: RHEL 6.2 , 2.6.32-220.el6.i686

I created a service using RPC and is compiled using rpcgen and gcc.

When I try to run the service I get the following Error :

Cannot register service: RPC: Authentication error; why = Client credential too weak

I restarted rpcbind with argument -i. Now able to register the RPC process.

man page shows that -i meaning insecure mode. Do I need to rewrite the program to have secure registration? If so any example please.

what causes insecure mode?

Last edited by harig; 03-20-2013 at 02:20 AM.
 
Old 03-20-2013, 08:09 AM   #2
linosaurusroot
Member
 
Registered: Oct 2012
Distribution: OpenSuSE,RHEL,Fedora,OpenBSD
Posts: 982
Blog Entries: 2

Rep: Reputation: 244Reputation: 244Reputation: 244
RPC has various security options ranging from None (Unix) through DES to possibly stronger recent versions I've not investigated. I'm afraid I last did RPC programming before the US allowed the relevant libraries to be exported so I didn't use those security features but added my own.
 
Old 03-20-2013, 10:32 AM   #3
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 9,078
Blog Entries: 4

Rep: Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171Reputation: 3171
... and you definitely want to run your RPC service with some level of cryptographic security and client-authentication. Even if you do not actually care if the data being passed is unintelligible (e.g. it's internal-only or passing through a VPN tunnel already), you do want other things like message-integrity and provenance. Take the time to really study these features closely.

An overly-trusting RPC service is a "Bobby Tables problem" at worst, but a source of unacceptable lack-of troubleshooting at best.

Last edited by sundialsvcs; 03-20-2013 at 10:33 AM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Learning NFS - 'RPC Error: Authentication error.' arashi256 Linux - Newbie 1 06-16-2010 04:23 PM
[SOLVED] Cannot register service: RPC: Authentication error; why = Client credential too weak Mario Blunk SUSE / openSUSE 1 03-09-2010 04:14 PM
Could Large file Size cause "RPC: Authentication error" with NFS server mount VWrestle97 Linux - Server 3 10-09-2009 07:32 PM
mountd time out: "mount_nfs: bad MNT RPC: RPC: Timed out" on client brush Debian 1 10-15-2006 03:01 PM
ERROR 1251: Client does not support authentication protocol javier_ccs Programming 1 06-15-2005 11:12 AM

LinuxQuestions.org > Forums > Non-*NIX Forums > Programming

All times are GMT -5. The time now is 06:56 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration