From: "Russ Cox" <rsc@plan9.bell-labs.com>
To: 9fans@cse.psu.edu
Subject: RE: [9fans] Auth problems (again?)
Date: Fri, 20 Sep 2002 01:03:00 -0400 [thread overview]
Message-ID: <c8886f82fb4cb5492234608bcbbfa3c2@plan9.bell-labs.com> (raw)
Try updating from sources again. It will pick
up a new program called auth/debug.
Run auth/debug. It asks for your local user
password as well as the cpu hostowner name and
password. It uses these to check that your
auth server is dialable and that it's giving out
correct tickets (which means it agrees with you
about those passwords).
The idea is that auth/debug will accumulate more
such sanity checks as time goes on.
For example, in my fairly complicated setup (three
p9sk1 domains), running auth/debug yields:
g% grep p9sk1 /mnt/factotum/ctl
key dom=cs.bell-labs.com proto=p9sk1 user=rsc !password?
key dom=outside.plan9.bell-labs.com proto=p9sk1 user=bozo !password?
key dom=insideout.plan9.bell-labs.com proto=p9sk1 role=speakfor user=glenda !password?
g% auth/debug
p9sk1 key: dom=cs.bell-labs.com proto=p9sk1 user=rsc !password?
successfully dialed auth server
password for rsc@cs.bell-labs.com [hit enter to skip test]:
ticket request using rsc@cs.bell-labs.com key succeeded
cpu server owner for domain cs.bell-labs.com [bootes]:
password for bootes@cs.bell-labs.com [hit enter to skip test]:
ticket request using bootes@cs.bell-labs.com key succeeded
p9sk1 key: dom=outside.plan9.bell-labs.com proto=p9sk1 user=bozo !password?
successfully dialed auth server
password for bozo@outside.plan9.bell-labs.com [hit enter to skip test]:
ticket request using bozo@outside.plan9.bell-labs.com key succeeded
cpu server owner for domain outside.plan9.bell-labs.com [bootes]: glenda
password for glenda@outside.plan9.bell-labs.com [hit enter to skip test]:
ticket request using glenda@outside.plan9.bell-labs.com key succeeded
p9sk1 key: dom=insideout.plan9.bell-labs.com proto=p9sk1 role=speakfor user=glenda !password?
cannot dial auth server: no auth server found for insideout.plan9.bell-labs.com
csquery authdom=insideout.plan9.bell-labs.com auth=* failed
csquery dom=insideout.plan9.bell-labs.com auth=''
dial net!!ticket failed: cs: can't translate address
g%
The first two sections are examples of domains
that worked: I have cs.bell-labs.com (used by plan9.bell-labs.com)
and outside.plan9.bell-labs.com (used by sources)
set up correctly.
In the third, auth/debug flags the fact that it can't
figure out the auth server for the domain and thus can't
dial it. (That's okay because there is no auth server,
but this is a degenerate case.)
Let me know what you get when you run auth/debug and we'll
go from there.
Russ
next reply other threads:[~2002-09-20 5:03 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-09-20 5:03 Russ Cox [this message]
2002-09-20 10:16 ` Gabriel Diaz Lopez de la Llave
-- strict thread matches above, loose matches on Subject: below --
2002-09-20 16:22 Russ Cox
2002-09-20 17:09 ` gabidiaz
2002-09-18 20:19 Russ Cox
2002-09-19 17:07 ` Gabriel Diaz Lopez de la Llave
2002-09-18 16:46 [9fans] /sys/src/^(9 boot)^/pc/memory.c Charles Forsyth
2002-09-18 20:15 ` [9fans] Auth problems (again?) Gabriel Diaz Lopez de la Llave
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=c8886f82fb4cb5492234608bcbbfa3c2@plan9.bell-labs.com \
--to=rsc@plan9.bell-labs.com \
--cc=9fans@cse.psu.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).