1 .\" $Id: verify_krb5_conf.8,v 1.7 2002/08/20 17:07:28 joda Exp $
8 .Nd checks krb5.conf for obvious errors
14 reads the configuration file
16 or the file given on the command line,
17 and parses it, thereby verifying that the syntax is not correctly wrong.
19 If the file is syntactically correct,
21 tries to verify that the contents of the file is of relevant nature.
26 .Bl -tag -width "<path>"
27 .It "<path>: failed to parse <something> as size/time/number/boolean"
28 Usually means that <something> is misspelled, or that it contains
29 weird characters. The parsing done by
31 is more strict than the one performed by libkrb5, and so strings that
32 work in real life, might be reported as bad.
33 .It "<path>: host not found (<hostname>)"
34 Means that <path> is supposed to point to a host, but it can't be
36 .It <path>: unknown or wrong type
37 Means that <path> is either is a string when it should be a list, vice
41 .It <path>: unknown entry
42 Means that <string> is not known by
47 points to the configuration file to read.
49 .Bl -tag -width /etc/krb5.conf -compact
51 Kerberos 5 configuration file
56 Since each application can put almost anything in the config file,
57 it's hard to come up with a water tight verification process. Most of
58 the default settings are sanity checked, but this does not mean that
59 every problem is discovered, or that everything that is reported as a
60 possible problem actually is one. This tool should thus be used with
63 It should warn about obsolete data, or bad practice, but currently