I've been playing with my openAFS setup, and adding keys for the afs principle for kerberos. Now, suddenly, Kerberos has gone down (or something).
Kadmin gives the following error:
kadmin -p admin
Authenticating as principal admin with password.
admin: Cannot contact any KDC for requested realm while initializing kadmin interface
Kinit:
kinit: Cannot contact any KDC for realm '***' while getting initial credentials
Please help (desperate)
Red Hat Ent. Linux 4 kerberos libraries had a fixed amount of memory they would use when using DNS to look up KDCs, and if the DNS response came back too big (e.g., you added one more KDC that pushed you over the space limit for the DNS answer), it would fail. That section of code in RHEL5 is just about completely different, and doesn't suffer from that problem. The code reflects upstream, so it is likely in some versions of other distributions as well.
You environment may or may not be affected.
