Category : kerberos

Trying to use librdkafka along with Docker (Alpine). Based on this link – https://github.com/confluentinc/confluent-kafka-go , I tried to create my Dockerfile. FROM amd64/alpine:3.8 as builder USER root RUN apk add –no-cache git make go autoconf bash g++ RUN git clone https://github.com/edenhill/librdkafka.git RUN cd librdkafka && ./configure && make && make install ENV GOROOT /usr/lib/go ENV ..

Read more

My script has the following instruction (python): c = open(KERBEROS_PATH, "rb").read().decode("UTF-8") where KERBEROS_PATH is path to /tmp/krb5cc_<id>. I need it to create a kerberos ticket. I run it in my Linux environment. I’m trying to run this script from docker environment (some Unix env like ubuntu or linux). But I can’t seem to figure how ..

Read more

I am working in a springboot application. My target is to publish any topic into kafka broker which is running in different server, i only have the host address and other config details. My JAAS config files are placed in /resources/config directory. kafka_client_jaas.conf file sample is below: KafkaClient { com.sun.security.auth.module.Krb5LoginModule required useKeyTab=true storeKey=true keyTab="${keytabfile path}" ..

Read more

I use docker-images for oracle-server and oracle-client. But but can’t connect to the database even from the server. /etc/hosts 172.17.0.2 kdc.h4vms.com h4vms.com /etc/krb5.conf includedir /etc/krb5.conf.d/ [logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log [libdefaults] default_realm = H4VMS.COM dns_lookup_realm = false dns_lookup_kdc = false ticket_lifetime = 24h forwardable = true udp_preference_limit = 1000000 default_tkt_enctypes ..

Read more

We are using twistlock(prisma cloud) to scan our docker images. One of our image using the mcr.microsoft.com/dotnet/aspnet:5.0 docker image. But while scanning through twistlock we are getting following vulnerability MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite ..

Read more

How to configure Kerberos in the docker container. I am using docker desktop and Linux container. Basically, I have dot net core application 3.1 which is consuming NAV soap endpoint, consuming NAV soap endpoint working fine in IIS deployment but failing in docker deployment. Reconfiguring Kerberos might solve this issue. Source: Docker..

Read more