Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

It's great to be smart 'cause then you know stuff.

devel / comp.protocols.kerberos / Re: Help with replication

SubjectAuthor
o Re: Help with replicationBill MacAllister

1
Re: Help with replication

<mailman.86.1658111819.8148.kerberos@mit.edu>

  copy mid

https://www.novabbs.com/devel/article-flat.php?id=285&group=comp.protocols.kerberos#285

  copy link   Newsgroups: comp.protocols.kerberos
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!tncsrv06.tnetconsulting.net!.POSTED.mailman.mit.edu!not-for-mail
From: bil...@ca-zephyr.org (Bill MacAllister)
Newsgroups: comp.protocols.kerberos
Subject: Re: Help with replication
Date: Sun, 17 Jul 2022 19:36:51 -0700
Organization: TNet Consulting
Lines: 415
Message-ID: <mailman.86.1658111819.8148.kerberos@mit.edu>
References: <b2a9fcb0ebfe2b7b37dc5f24d4626236@ca-zephyr.org>
<6755037f-8e8e-7886-44a8-31a83124c787@mit.edu>
<2096c771ad96df84cd2b8113011d7ea9@ca-zephyr.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII;
format=flowed
Content-Transfer-Encoding: 7bit
Injection-Info: tncsrv06.tnetconsulting.net; posting-host="mailman.mit.edu:18.7.21.50";
logging-data="29586"; mail-complaints-to="newsmaster@tnetconsulting.net"
User-Agent: Roundcube Webmail/1.4.13
Cc: <kerberos@mit.edu>
To: Greg Hudson <ghudson@mit.edu>
Authentication-Results: mit.edu;
dmarc=none (p=none dis=none) header.from=ca-zephyr.org
Authentication-Results: mit.edu; arc=pass
ARC-Seal: i=2; a=rsa-sha256; d=mit.edu; s=arc; t=1658111817; cv=pass;
b=Rz5FPlwxG7YQ9hkFtdYNr0IJvMnoxz1noSY6uw019TBnBRqBknB82eb6QetNhBvA+kn8kb4W7JffqcY3GsSzSSdBypZNIY2GOOxxRHVmbRn9wIEUZSnC0bhoNr/u7ywRMn3uys0ANHPNHuaf1o4lftV/ACYSVG0ZKvDQGHEG2BUIlljen7bLBT3v0exsX0d61uVcdGZQKRZwRGA7i0UtT7jQWl8H7guGiwUi85B5lNDMN1pMtoKq7hYasdQeYzRQrVLOHUJE1ldPslgkdiURRBFH8jdDJ6qqX3Rg/ow9A525P3tDRzU9Fmd1MQIaUvPhQN46magtoc2d9FRd0C6/Yg==
ARC-Message-Signature: i=2; a=rsa-sha256; d=mit.edu; s=arc; t=1658111817;
c=relaxed/relaxed; bh=yhoagwOBBfebXkGUeVRAkflbFj35aJ++qB8hS28e14I=;
h=MIME-Version:Date:From:Subject:Message-ID:Content-Type;
b=ePclSl0rLJ2w4KR+fK2TrDqxzQBqsKuU+cvf1dKO4irp+/UW/Tyedj5Rws03FuF3eROCPyTkGEzh8fC6Pp5Mg32kANWm2g5e+/0lM2tFWAdf6NIbq5sbJvo2NfS8F3k/ZpRM+Q0z4vEtpXTYEdAL0fvEIbsfvZAycCNFDZqLc8igkXFaRIS4EPybLgL7pgT1oE+2MrumAZvPohjM6WYoJIh3Kf1vZiB5cdv1W4sgJ1936Cc9dAtrWdVfXqtaFqT3NqPwapecjkSZiVQN0aJxTxuHH4uxAAardXv5ka5/8HGMgJE9XEj+m2yU0e6Q/Y3I0r8IEFK9pNz65f2o1z42cg==
ARC-Authentication-Results: i=2; mit.edu; dkim=pass (1024-bit key)
header.d=mitprod.onmicrosoft.com header.i=@mitprod.onmicrosoft.com
header.b=ToiN8ld2; arc=pass
Authentication-Results: mit.edu;
dkim=pass (1024-bit key) header.d=mitprod.onmicrosoft.com
header.i=@mitprod.onmicrosoft.com header.b=ToiN8ld2
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
b=lVgJI7pPd3IP4z6WxKu/TChbLlcBHwEO5/kZuJRptfTds22eShK1RBdh1OJ4OxaXkXKWAhTTsfLb8YlxDCVIX0nLPjTgfJ7jmtQcnMtbu+DeZyUmUhIbjFvD5+7l8cNjCjxbp6yHutrVPoIqPCfdgUr5IDkpTYMzWlh7HE+j5jQl0qg1KIj1QuptGKYO9Sav9By9eRP9i/FYHoGGrLn3wyRT1UNXfSSZR75K6OPMm9EGAfJF5f1U8hMaQSe5TfII5JYbNKnSXB/vupa/PmIygI3oDUGjLY5XE52jXe1JSdtqFDbpK8uU9YiYA5eSWUhwqW+LpiJRuea30g92T0GNSQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
s=arcselector9901;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
bh=yhoagwOBBfebXkGUeVRAkflbFj35aJ++qB8hS28e14I=;
b=GggKusHIsOGJ0DgxcRQGww5gfNfu9eKQSiinmB0lpk3yQsmG/lKWzeqakOEAqd86dNGecv0ykx3FakQJ1DYwaQmKzoAiw7HD9/xoADgPWDSkNl6WvmYjeL/2qPRCkTeZTMle/R7Q4aWubmaMnyYgfzBebJiRdFwP8o0zKMuRErsofZyq8A4OZXnYClpOz3QSIMMDroXO+fVY88COywL2+aKXnnCkylV30n9oqloKOsJUmHvKSXxHE7EyaLIEi+TGa9NHkZjxtQgisX+Sb2ldLqoIVvdwca+9sn5RxLiDkICq4+ck4sSpnD/dO1BtT9qp1pF6DzcuKKjVN9/tqGdBzg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none (sender ip is
166.84.7.202) smtp.rcpttodomain=mit.edu smtp.mailfrom=ca-zephyr.org;
dmarc=none action=none header.from=ca-zephyr.org; dkim=none (message not
signed); arc=none (0)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=mitprod.onmicrosoft.com; s=selector2-mitprod-onmicrosoft-com;
h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
bh=yhoagwOBBfebXkGUeVRAkflbFj35aJ++qB8hS28e14I=;
b=ToiN8ld2K+7gX+m5Bf5p8+YOhVjBNDgptykLMgoIBksVzHMssrJN+m8l7MQt6gST4EYhMdOXehlXsEdKPlMraI6r+553nBz6zeym94QXQWtbnXis5Ot/yQ4hQsZZYLi3t7NtxgnbezrN1PH96EXjAL13k5dwNo0r+wnOC15LsFg=
Authentication-Results: spf=none (sender IP is 166.84.7.202)
smtp.mailfrom=ca-zephyr.org; dkim=none (message not signed)
header.d=none;dmarc=none action=none header.from=ca-zephyr.org;
Received-SPF: None (protection.outlook.com: ca-zephyr.org does not designate
permitted sender hosts)
In-Reply-To: <6755037f-8e8e-7886-44a8-31a83124c787@mit.edu>
X-Sender: bill@ca-zephyr.org
X-EOPAttributedMessage: 0
X-EOPTenantAttributedMessage: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b:0
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 82cf6541-f1be-4570-cf6a-08da68665f9e
X-MS-TrafficTypeDiagnostic: BN6PR0101MB2850:EE_
X-LD-Processed: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b,ExtAddr
X-MS-Exchange-AtpMessageProperties: SA
X-MS-Exchange-SenderADCheck: 2
X-MS-Exchange-AntiSpam-Relay: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: y9pS0wwOoaLa6ygu+rqnwQc3gAwXs/ZIKj5mnRZxZLAoylS8Tb3RveXd5DYGtP8u3zmqf9N2JJffPsmMQufahZJqdEn8DQYD01V1phKAb6C2dfUGp6qZ1Wb1qDzFcOGavYqpvUYGpHU4ZPK/nOkfKraL/snrX78K5XHBgecyDmdt4Wb1j/EZyujPbnwWUCdJmRJVocntT3T53ceL8jiHsS6x80e1OokjJq0ykEoMGZUIPqzir9yJvIcY15D+ZyH5aI5gA0YR8f/hwx+avUES21VvflTtzcNK3WwqrRu2X9uF7Ng5Cfpu9qljsR7+d6NzemaJL73ujp1zt4dgA4CcX3SfeTlE7XcuE0mtr8lYmglFG0kahS8qoCAm8TmVFxGf8MDndC7GizR4MX4KyNzKrCcwekxrXth9X2oRgFKykZLVTYY442NWWi+JyldmcSJf7kwXwm39ViPqEkJZw4B/ljNdtka/sKJIQSCNTHITJPHPfI7UhZXQMwqB3tvOCb7s0+fODzA/Va0gv9rj5V/u0JVumwEcaq/pR9OIODoJ8Ufu8wgj+Ujdr0ZDcOahZNy3IzF2fBYPehbksOxKfRmTaIXB6EZY+y5l9dvsh0pZx49+Ppnm3R+6gwGKFvmlja+lzF+hojmT3i8l/cfRbnb5s1fL875Xw+2OnLDZO798gYurO4J2T6pK42HTXM815msQ9GSpSad+FBQFyFQ0ZgMWKfCcXZ614sUuWBNsrSy/cX8=
X-Forefront-Antispam-Report: CIP:166.84.7.202; CTRY:US; LANG:en; SCL:1; SRV:;
IPV:NLI; SFV:NSPM; H:portola.ca-zephyr.org; PTR:oroville.ca-zephyr.org;
CAT:NONE;
SFS:(13230016)(4636009)(396003)(346002)(136003)(39860400002)(376002)(356005)(7636003)(336012)(6266002)(426003)(2616005)(83380400001)(956004)(2906002)(4326008)(68406010)(5660300002)(70586007)(6862004)(36756003)(7116003)(30864003)(786003)(316002)(86362001)(498600001)(53546011)(8676002)(26005)(7696005)(24736004)(108616005)(3480700007);
DIR:OUT; SFP:1022;
X-Auto-Response-Suppress: DR, OOF, AutoReply
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 18 Jul 2022 02:36:52.5136 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 82cf6541-f1be-4570-cf6a-08da68665f9e
X-MS-Exchange-CrossTenant-Id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-AuthSource: DM6NAM11FT050.eop-nam11.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR0101MB2850
X-OriginatorOrg: mitprod.onmicrosoft.com
X-BeenThere: kerberos@mit.edu
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: The Kerberos Authentication System Mailing List <kerberos.mit.edu>
List-Unsubscribe: <https://mailman.mit.edu/mailman/options/kerberos>,
<mailto:kerberos-request@mit.edu?subject=unsubscribe>
List-Archive: <http://mailman.mit.edu/pipermail/kerberos/>
List-Post: <mailto:kerberos@mit.edu>
List-Help: <mailto:kerberos-request@mit.edu?subject=help>
List-Subscribe: <https://mailman.mit.edu/mailman/listinfo/kerberos>,
<mailto:kerberos-request@mit.edu?subject=subscribe>
X-Mailman-Original-Message-ID: <2096c771ad96df84cd2b8113011d7ea9@ca-zephyr.org>
X-Mailman-Original-References: <b2a9fcb0ebfe2b7b37dc5f24d4626236@ca-zephyr.org>
<6755037f-8e8e-7886-44a8-31a83124c787@mit.edu>
 by: Bill MacAllister - Mon, 18 Jul 2022 02:36 UTC

On 2022-07-16 22:19, Greg Hudson wrote:
>
> Usually this is a hostname canonicalization issue. You can set the
> environment variable KRB5_TRACE to a filename, start kpropd, and look
> in
> the file to see what principal is being looked up.

Thanks Greg. I should have remembered that. It exposed the fact that
the
kiprop/ principal for the host was missing. I created the principal and
added
it to /etc/krb5.keytab. This moved the error, but I am still getting
failures
to replicate. Here is the debug log:

$ cat kpropd-debug.log
[27738] 1658108981.225608: Initializing MEMORY:kadm5_0 with default
princ kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108981.225609: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108981.225610: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658108981.225611: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658108981.225613: Sending unauthenticated request
[27738] 1658108981.225614: Sending request (244 bytes) to MYREALM.COM
[27738] 1658108981.225615: Resolving hostname corp-kdc-2.myrealm.com
[27738] 1658108981.225616: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658108981.225617: Resolving hostname corp-kdc-1.myrealm.com
[27738] 1658108981.225618: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658108981.225619: Initiating TCP connection to stream
172.25.5.49:88
[27738] 1658108981.225620: Sending TCP request to stream 172.25.5.49:88
[27738] 1658108981.225621: Received answer (210 bytes) from stream
172.25.5.49:88
[27738] 1658108981.225622: Terminating TCP connection to stream
172.25.5.49:88
[27738] 1658108981.225623: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658108981.225624: No URI records found
[27738] 1658108981.225625: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658108981.225626: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658108981.225627: No SRV records found
[27738] 1658108981.225628: Response was not from master KDC
[27738] 1658108981.225629: Received error from KDC: -1765328377/Server
not found in Kerberos database
[27738] 1658108981.225630: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108981.225631: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658108981.225632: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658108981.225634: Sending unauthenticated request
[27738] 1658108981.225635: Sending request (244 bytes) to MYREALM.COM
(master)
[27738] 1658108981.225636: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658108981.225637: No URI records found
[27738] 1658108981.225638: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658108981.225639: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658108981.225640: No SRV records found
[27738] 1658108981.225641: Destroying ccache MEMORY:kadm5_0
[27738] 1658108985.238223: Initializing MEMORY:kadm5_1 with default
princ kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108985.238224: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108985.238225: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658108985.238226: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658108985.238228: Sending unauthenticated request
[27738] 1658108985.238229: Sending request (244 bytes) to MYREALM.COM
[27738] 1658108985.238230: Resolving hostname corp-kdc-2.myrealm.com
[27738] 1658108985.238231: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658108985.238232: Resolving hostname corp-kdc-1.myrealm.com
[27738] 1658108985.238233: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658108985.238234: Initiating TCP connection to stream
172.25.5.49:88
[27738] 1658108985.238235: Sending TCP request to stream 172.25.5.49:88
[27738] 1658108985.238236: Received answer (210 bytes) from stream
172.25.5.49:88
[27738] 1658108985.238237: Terminating TCP connection to stream
172.25.5.49:88
[27738] 1658108985.238238: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658108985.238239: No URI records found
[27738] 1658108985.238240: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658108985.238241: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658108985.238242: No SRV records found
[27738] 1658108985.238243: Response was not from master KDC
[27738] 1658108985.238244: Received error from KDC: -1765328377/Server
not found in Kerberos database
[27738] 1658108985.238245: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108985.238246: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658108985.238247: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658108985.238249: Sending unauthenticated request
[27738] 1658108985.238250: Sending request (244 bytes) to MYREALM.COM
(master)
[27738] 1658108985.238251: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658108985.238252: No URI records found
[27738] 1658108985.238253: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658108985.238254: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658108985.238255: No SRV records found
[27738] 1658108985.238256: Destroying ccache MEMORY:kadm5_1
[27738] 1658108993.245551: Initializing MEMORY:kadm5_2 with default
princ kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108993.245552: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108993.245553: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658108993.245554: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658108993.245556: Sending unauthenticated request
[27738] 1658108993.245557: Sending request (244 bytes) to MYREALM.COM
[27738] 1658108993.245558: Resolving hostname corp-kdc-2.myrealm.com
[27738] 1658108993.245559: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658108993.245560: Resolving hostname corp-kdc-1.myrealm.com
[27738] 1658108993.245561: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658108993.245562: Initiating TCP connection to stream
172.25.5.49:88
[27738] 1658108993.245563: Sending TCP request to stream 172.25.5.49:88
[27738] 1658108993.245564: Received answer (210 bytes) from stream
172.25.5.49:88
[27738] 1658108993.245565: Terminating TCP connection to stream
172.25.5.49:88
[27738] 1658108993.245566: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658108993.245567: No URI records found
[27738] 1658108993.245568: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658108993.245569: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658108993.245570: No SRV records found
[27738] 1658108993.245571: Response was not from master KDC
[27738] 1658108993.245572: Received error from KDC: -1765328377/Server
not found in Kerberos database
[27738] 1658108993.245573: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658108993.245574: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658108993.245575: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658108993.245577: Sending unauthenticated request
[27738] 1658108993.245578: Sending request (244 bytes) to MYREALM.COM
(master)
[27738] 1658108993.245579: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658108993.245580: No URI records found
[27738] 1658108993.245581: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658108993.245582: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658108993.245583: No SRV records found
[27738] 1658108993.245584: Destroying ccache MEMORY:kadm5_2
[27738] 1658109009.252679: Initializing MEMORY:kadm5_3 with default
princ kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109009.252680: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109009.252681: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109009.252682: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109009.252684: Sending unauthenticated request
[27738] 1658109009.252685: Sending request (244 bytes) to MYREALM.COM
[27738] 1658109009.252686: Resolving hostname corp-kdc-2.myrealm.com
[27738] 1658109009.252687: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109009.252688: Resolving hostname corp-kdc-1.myrealm.com
[27738] 1658109009.252689: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109009.252690: Initiating TCP connection to stream
172.25.5.49:88
[27738] 1658109009.252691: Sending TCP request to stream 172.25.5.49:88
[27738] 1658109009.252692: Received answer (210 bytes) from stream
172.25.5.49:88
[27738] 1658109009.252693: Terminating TCP connection to stream
172.25.5.49:88
[27738] 1658109009.252694: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109009.252695: No URI records found
[27738] 1658109009.252696: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109009.252697: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109009.252698: No SRV records found
[27738] 1658109009.252699: Response was not from master KDC
[27738] 1658109009.252700: Received error from KDC: -1765328377/Server
not found in Kerberos database
[27738] 1658109009.252701: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109009.252702: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109009.252703: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109009.252705: Sending unauthenticated request
[27738] 1658109009.252706: Sending request (244 bytes) to MYREALM.COM
(master)
[27738] 1658109009.252707: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109009.252708: No URI records found
[27738] 1658109009.252709: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109009.252710: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109009.252711: No SRV records found
[27738] 1658109009.252712: Destroying ccache MEMORY:kadm5_3
[27738] 1658109041.259557: Initializing MEMORY:kadm5_4 with default
princ kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109041.259558: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109041.259559: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109041.259560: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109041.259562: Sending unauthenticated request
[27738] 1658109041.259563: Sending request (244 bytes) to MYREALM.COM
[27738] 1658109041.259564: Resolving hostname corp-kdc-2.myrealm.com
[27738] 1658109041.259565: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109041.259566: Resolving hostname corp-kdc-1.myrealm.com
[27738] 1658109041.259567: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109041.259568: Initiating TCP connection to stream
172.25.5.49:88
[27738] 1658109041.259569: Sending TCP request to stream 172.25.5.49:88
[27738] 1658109041.259570: Received answer (210 bytes) from stream
172.25.5.49:88
[27738] 1658109041.259571: Terminating TCP connection to stream
172.25.5.49:88
[27738] 1658109041.259572: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109041.259573: No URI records found
[27738] 1658109041.259574: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109041.259575: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109041.259576: No SRV records found
[27738] 1658109041.259577: Response was not from master KDC
[27738] 1658109041.259578: Received error from KDC: -1765328377/Server
not found in Kerberos database
[27738] 1658109041.259579: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109041.259580: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109041.259581: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109041.259583: Sending unauthenticated request
[27738] 1658109041.259584: Sending request (244 bytes) to MYREALM.COM
(master)
[27738] 1658109041.259585: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109041.259586: No URI records found
[27738] 1658109041.259587: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109041.259588: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109041.259589: No SRV records found
[27738] 1658109041.259590: Destroying ccache MEMORY:kadm5_4
[27738] 1658109105.265034: Initializing MEMORY:kadm5_5 with default
princ kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109105.265035: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109105.265036: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109105.265037: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109105.265039: Sending unauthenticated request
[27738] 1658109105.265040: Sending request (244 bytes) to MYREALM.COM
[27738] 1658109105.265041: Resolving hostname corp-kdc-2.myrealm.com
[27738] 1658109105.265042: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109105.265043: Resolving hostname corp-kdc-1.myrealm.com
[27738] 1658109105.265044: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109105.265045: Initiating TCP connection to stream
172.25.5.49:88
[27738] 1658109105.265046: Sending TCP request to stream 172.25.5.49:88
[27738] 1658109105.265047: Received answer (210 bytes) from stream
172.25.5.49:88
[27738] 1658109105.265048: Terminating TCP connection to stream
172.25.5.49:88
[27738] 1658109105.265049: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109105.265050: No URI records found
[27738] 1658109105.265051: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109105.265052: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109105.265053: No SRV records found
[27738] 1658109105.265054: Response was not from master KDC
[27738] 1658109105.265055: Received error from KDC: -1765328377/Server
not found in Kerberos database
[27738] 1658109105.265056: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109105.265057: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109105.265058: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109105.265060: Sending unauthenticated request
[27738] 1658109105.265061: Sending request (244 bytes) to MYREALM.COM
(master)
[27738] 1658109105.265062: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109105.265063: No URI records found
[27738] 1658109105.265064: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109105.265065: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109105.265066: No SRV records found
[27738] 1658109105.265067: Destroying ccache MEMORY:kadm5_5
[27738] 1658109233.272502: Initializing MEMORY:kadm5_6 with default
princ kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109233.272503: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109233.272504: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109233.272505: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109233.272507: Sending unauthenticated request
[27738] 1658109233.272508: Sending request (244 bytes) to MYREALM.COM
[27738] 1658109233.272509: Resolving hostname corp-kdc-2.myrealm.com
[27738] 1658109233.272510: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109233.272511: Resolving hostname corp-kdc-1.myrealm.com
[27738] 1658109233.272512: Sending initial UDP request to dgram
172.25.5.49:88
[27738] 1658109233.272513: Initiating TCP connection to stream
172.25.5.49:88
[27738] 1658109233.272514: Sending TCP request to stream 172.25.5.49:88
[27738] 1658109233.272515: Received answer (210 bytes) from stream
172.25.5.49:88
[27738] 1658109233.272516: Terminating TCP connection to stream
172.25.5.49:88
[27738] 1658109233.272517: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109233.272518: No URI records found
[27738] 1658109233.272519: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109233.272520: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109233.272521: No SRV records found
[27738] 1658109233.272522: Response was not from master KDC
[27738] 1658109233.272523: Received error from KDC: -1765328377/Server
not found in Kerberos database
[27738] 1658109233.272524: Getting initial credentials for
kiprop/kdc-pdx-1.myrealm.com@MYREALM.COM
[27738] 1658109233.272525: Setting initial creds service to
kiprop/corp-kdc-admin.myrealm.com
[27738] 1658109233.272526: Looked up etypes in keytab: aes256-cts,
aes128-cts, rc4-hmac, des3-cbc-sha1
[27738] 1658109233.272528: Sending unauthenticated request
[27738] 1658109233.272529: Sending request (244 bytes) to MYREALM.COM
(master)
[27738] 1658109233.272530: Sending DNS URI query for
_kerberos.MYREALM.COM.
[27738] 1658109233.272531: No URI records found
[27738] 1658109233.272532: Sending DNS SRV query for
_kerberos-master._udp.MYREALM.COM.
[27738] 1658109233.272533: Sending DNS SRV query for
_kerberos-master._tcp.MYREALM.COM.
[27738] 1658109233.272534: No SRV records found
[27738] 1658109233.272535: Destroying ccache MEMORY:kadm5_6


Click here to read the complete article
1
server_pubkey.txt

rocksolid light 0.9.8
clearnet tor