kinit should print an error if credentials cache has invalid permissions
Bug #740477 reported by
Alec Warner
This bug affects 3 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
krb5 (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: krb5-user
The obvious use case is a user does something silly such as:
sudo kinit -p <principal> and promptly makes a root:root ccache file for the specified principal.
Then the user later tries to kinit as that user and in fact everything *looks* fine...the kinit doesn't print any errors and returns 0. However the truth is nothing was done because the ccache is the wrong permissions.
klist prints an error well enough:
klist: Credentials cache permissions incorrect while setting cache flags (ticket cache FILE:/var/
-A
Thank you for taking the time to report this bug and helping to make Ubuntu better. Please execute the following command, as it will automatically gather debugging information, in a terminal:
apport-collect 740477
When reporting bugs in the future please use apport by using 'ubuntu-bug' and the name of the package affected. You can learn more about this functionality at https:/ /wiki.ubuntu. com/ReportingBu gs.