Custom Query (1145 matches)
Results (325 - 327 of 1145)
Ticket | Resolution | Summary | Owner | Reporter |
---|---|---|---|---|
#488 | fixed | kerberos-config needs to set allow_weak_crypto | broder | |
Description |
The ATHENA.MIT.EDU KDC seems to only support the des-cbc-crc enctype. As of krb5 1.8, that's defined as "weak crypto", and the krb5 clients won't talk to the KDC by default. Until the KDC is upgraded or reconfigured to allow shinier enctypes, we need to set allow_weak_crypto = true in the [libdefaults] section of krb5.conf. From some preliminary testing, it looks like that setting has no affect in the older versions of krb5 we still support. |
|||
#491 | fixed | counterlog should include `lsb_release -sd` | jdreed | jdreed |
Description |
We should update counterlog to include the output of lsb_release -sd, so that we can compile a list of users running old distros and tell them to upgrade before Ubuntu de-supports them. This requires coordination with ops to ensure that this doesn't break their existing scripts. Marking as critical, because Intrepid turns off in April, and there are Interpid machines in the wild. |
|||
#492 | fixed | Coordinate with ops to get report of bitrotting machines | jdreed | jdreed |
Description |
We have decided not to have anything other than -cluster upgrade between releases automatically. Other metapackage users should get whined at by Ubuntu about new versions through the normal methods (Synaptic, etc). However, there are likely to be un-upgraded machines. We should coordinate with ops to provide an easily-runnable report that they can run 2-3x per year that gets us hostnames of machines that are running "old" releases. This requires a change to counterlog (see #491) to be in place before we can start generating these reports. |