Date: Mon, 24 Jul 2017 22:57:20 +0300 From: Heikki Lindholm <holin@iki.fi> To: freebsd-questions@freebsd.org Subject: Re: kerberized nfs Message-ID: <d8c82909-23bd-a0ec-e202-de758b03fdbd@iki.fi> In-Reply-To: <d0811634-0a81-7e7c-962d-2bd394ee6e11@iki.fi> References: <d0811634-0a81-7e7c-962d-2bd394ee6e11@iki.fi>
next in thread | previous in thread | raw e-mail | index | archive | help
Let's try another angle: FreeBSD bundles an ancient version of heimdal (1.5.2 from 2012). System tools, like gssd, link to that version. Ports have newer versions (and mit krb5 as well), but how could I make the system tools use them or build "ports versions" of the system tools without horrible kludges? On 21.07.2017 20:06, Heikki Lindholm wrote: > Hello list, > > I'm trying to mount a kerberized NFSv4 share on FreeBSD 11. It's an > experimental setup without DNS; only /etc/hosts based lookup. I can't > even get kinit to work and, expectedly, mounting also fails. The problem > is that kinit stubbornly tries to get the kerberos kdc records from DNS, > although the server's ip is specified in /etc/hosts and it's in > krb5.conf and additionally krb5.conf is set to not do any DNS lookups. > > So, I installed MIT kerberos and that version of kinit works fine, but > the problem then is, how to make mount use the MIT version? > > Regards, > Heikki Lindholm > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?d8c82909-23bd-a0ec-e202-de758b03fdbd>