Ars Technica

Linux, Kerberos, and timeouts

I've inherited a managed Linux desktop environment from a previous administrator. There are about 50 Ubuntu machines that use Kerberos and NIS for AuthN/AuthZ. There are two KDC servers that maintain ...
ZDNet

Windows, Linux distros, macOS pay for Kerberos 21-year-old 'cryptographic sin'

A bypass bug present in the Kerberos cryptographic authentication protocol for 21 years has now been fixed in patches from Microsoft, Samba, Fedora, FreeBSD, and Debian. The discoverers of the ancient ...
Bleeping Computer

21-Year-Old Bug in Kerberos Protocol Gets Patch in Windows, Linux

Two implementations of the Kerberos authentication protocol received patches this week against a vulnerability that allowed a threat actor to bypass authentication procedures. The vulnerability was ...
Network World

Linux vendors patch Kerberos 5

A buffer overflow in the MIT Kerberos 5 network authentication tool’s “krb5_aname_to_localname()” library function could be exploited to gain root privileges on the affected machine. For more, go to: ...
ZDNet

Unix/Linux shops -- beware of Kerberos hole

Accelerate your tech game Paid Content How the New Space Race Will Drive Innovation How the metaverse will change the future of work and society Managing the ...