Bug 220898 - kerberos kinit not respecting no dns settings
Summary: kerberos kinit not respecting no dns settings
Status: New
Alias: None
Product: Base System
Classification: Unclassified
Component: bin (show other bugs)
Version: 11.0-RELEASE
Hardware: Any Any
: --- Affects Only Me
Assignee: freebsd-bugs mailing list
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2017-07-21 08:10 UTC by holindho
Modified: 2017-07-21 08:18 UTC (History)
0 users

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description holindho 2017-07-21 08:10:51 UTC
I set up a local realm for testing without a DNS server. Kerberos server is of the MIT type on another box. Addresses in /etc/hosts are set up so that the kerberos server can be pinged without DNS lookups. MIT kinit from a Linux box works fine. Running kinit on a FreeBSD box starts looking for the KDC via DNS, disregarding /etc/krb5.conf, disregarding /etc/hosts, and obviously fails.

/etc/nsswitch has
hosts: files dns

krb5.conf has:
[libdefaults]
        ....
        dns_lookup_kdc = false
        dns_lookup_realm = false
        rdns = false
Comment 1 holindho 2017-07-21 08:18:13 UTC
Adding dns_fallback = false did not help either