[OpenAFS] Redux: Linux: systemctl --user vs. AFS

Dirk Heinrichs dirk.heinrichs@altum.de
Fri, 13 Aug 2021 20:01:04 +0200


This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--Uf29tx69Rxq2Ij3FwrWTD5djPMYxgEdcP
Content-Type: multipart/mixed; boundary="BL2IPFvcQUoyR0zI30DaQ7LNObxoyV1et";
 protected-headers="v1"
From: Dirk Heinrichs <dirk.heinrichs@altum.de>
To: openafs-info@openafs.org
Message-ID: <775ebbb3-252d-f552-3ed9-699a4d14b009@altum.de>
Subject: Re: [OpenAFS] Redux: Linux: systemctl --user vs. AFS
References: <7f6d69d7-859d-722b-74a3-73e23621bca5@altum.de>
 <CACxoJuVKPBcz_m0BjYn8zm+=-NRDi6b_PBrsNe=H8=vxaQGs8w@mail.gmail.com>
 <ae809800-9501-7fb1-6927-f97c6b1e2aec@gmx.de>
 <85b54b9b-d155-666d-7cf4-52f03c6cbb3d@email.unc.edu>
 <6f6ea9ff-744a-4287-beaa-280c7c63ea2c@spacefrogg.net>
 <9c36d6d9-1960-6c7f-1c70-d3974da9a726@email.unc.edu>
 <af7aaa06-0087-45ef-aa99-2322eb4d9339@spacefrogg.net>
 <YRaGQHBg1QD1uZGn@proton.home.jsbillings.org>
 <41595407-2d0c-fd55-2707-caaaa8938529@altum.de>
 <YRaUPPOs7PtXHGb7@proton.home.jsbillings.org>
In-Reply-To: <YRaUPPOs7PtXHGb7@proton.home.jsbillings.org>

--BL2IPFvcQUoyR0zI30DaQ7LNObxoyV1et
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
Content-Language: en-US

Jonathan Billings:
> On Fri, Aug 13, 2021 at 05:38:54PM +0200, Dirk Heinrichs wrote:
>> Jonathan Billings:
>>
>>> # Set ccache name
>>> export KRB5CCNAME=3D"KEYRING:persistent:$UID"
>> Am I correct to assume that the "regular" login session also needs to =
be
>> configured this way?
>>
>> Thanks...
> Yes, I have this in my /etc/krb5.conf:
>
> [libdefaults]
>     default_ccache_name =3D KEYRING:persistent:%{uid}

Tried the setup right away on Debian, but it doesn't work. Seems Debian
adds some random string to the cache name, even if it's set to KEYRING:

    % LC_ALL=3DC klist|head -1
    Ticket cache: KEYRING:persistent:1000:krb_ccache_inOQJ0u


Of course, this doesn't fit with the KRB5CCNAME as set in the script.

Any ideas how I can convince Debian not to add that string to the cache
name?

Bye...

=C2=A0=C2=A0=C2=A0 Dirk

--=20
Dirk Heinrichs <dirk.heinrichs@altum.de>
Matrix-Adresse: @heini:chat.altum.de
GPG Public Key: 80F1540E03A3968F3D79C382853C32C427B48049
Privacy Handbuch: https://www.privacy-handbuch.de



--BL2IPFvcQUoyR0zI30DaQ7LNObxoyV1et--

--Uf29tx69Rxq2Ij3FwrWTD5djPMYxgEdcP
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature"

-----BEGIN PGP SIGNATURE-----

iHUEARYKAB0WIQQBbRZ091iOtChJXdXJlzdNRFS0TAUCYRazYAAKCRDJlzdNRFS0
TKmCAQD/PRCZyCwLk4S/3YwiFkkDwslAEXoNztMDahzwHrycgAD/YuMWS3r8wqCy
5kXPJe41GYIRjF8O8cKllwl74MhnJg8=
=sDPy
-----END PGP SIGNATURE-----

--Uf29tx69Rxq2Ij3FwrWTD5djPMYxgEdcP--