Bug 220898

Summary: kerberos kinit not respecting no dns settings
Product: Base System Reporter: holindho
Component: binAssignee: freebsd-bugs mailing list <bugs>
Status: New ---    
Severity: Affects Only Me    
Priority: ---    
Version: 11.0-RELEASE   
Hardware: Any   
OS: Any   

Description holindho 2017-07-21 08:10:51 UTC
I set up a local realm for testing without a DNS server. Kerberos server is of the MIT type on another box. Addresses in /etc/hosts are set up so that the kerberos server can be pinged without DNS lookups. MIT kinit from a Linux box works fine. Running kinit on a FreeBSD box starts looking for the KDC via DNS, disregarding /etc/krb5.conf, disregarding /etc/hosts, and obviously fails.

/etc/nsswitch has
hosts: files dns

krb5.conf has:
[libdefaults]
        ....
        dns_lookup_kdc = false
        dns_lookup_realm = false
        rdns = false
Comment 1 holindho 2017-07-21 08:18:13 UTC
Adding dns_fallback = false did not help either