[Samba] Reverse DNS, Kerberos, and Samba4 as a DC

Love Hörnquist Åstrand lha at kth.se
Sun Sep 19 13:34:20 MDT 2010

19 sep 2010 kl. 09.43 skrev Aaron Solochek:

>> I'm not sure reverse DNS is actually important for Kerberos to work.
>> The samba4 provision script does not even set up reverse DNS.
>> I've Cc'ed samba-technical for a better chance at an authoritative answer.
> Reverse DNS is certainly important for things like kerberized ssh.  reverse DNS
> is used to look up the host key for the machine you're connecting to.

That should not be needed if you use referrals which most kerberos frameworks supports today, trusting DNS is something you can't do (maybe with dnssec, but that's way off still).


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3815 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100919/9efcb2ce/attachment.bin>

More information about the samba-technical mailing list