NFSv4 support in Dapper.

[Soleil-Raid]

master_b: It sounds like your DNS/Reverse DNS/Kerberos names are not
matching up.



--



I found another common problem with nfs4, which I documented in my
internal wiki, and I'm sticking here so _someone_ in the future might
avoid lots of searching.



NFSv4 on Ubuntu Dapper, looks for Kerberos CC files in the wrong place.
If for example, user with uid 1000 stores it's credentials cache in
/tmp/krb5cc_1000_S7Yzyb (where S7Yzyb is a psuedo random set of
charchters), while the NFS client looks for the credentials cache in
/tmp/krb5cc_1000.

This can be fixed by properly setting the KRB5CCNAME environment
variable, although there's a plethora of places avaliable to do this.
Since KRB5CCNAME is used by pam_krb5, it's not possible to stick this
info in a home directory file without some ugly hacks. Therefore, the
best way would seem to be to use /etc/environment, yet I can't get this
to use the $UID value to set the filename properly, it continues to use
set the name exactly - eg;

edward at mort ~ $ set|grep KRB5CCNAME

KRB5CCNAME='FILE:/tmp/krb5cc_${UID}'



Linking the krb5cc file will work, but is an ugly ugly hack. Eg;

ln krb5cc_1000_S7Yzyb krb5cc_1000



Edit: Hard or softlinking doesn't work in the long run. It seems that
MIT Kerberos destroys the cache file and then recreates it, probably to
avoid people doing tricky things such as above.


-- 
Soleil-Raid