JDK-6552334 : Enable DNS in Kerberos by default
  • Type: Bug
  • Component: security-libs
  • Sub-Component: org.ietf.jgss:krb5
  • Affected Version: 7
  • Priority: P4
  • Status: Closed
  • Resolution: Fixed
  • OS: generic
  • CPU: generic
  • Submitted: 2007-05-01
  • Updated: 2015-04-07
  • Resolved: 2011-03-07
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
7 b48Fixed
Related Reports
Relates :  
Support for DNS to locate KDC/realm has been added via RFE 4814940.

However, currently it is disabled by default. Users need to enable it via 
Kerberos configuration settings.

MIT Kerberos has enabled "dns_lookup_kdc" by default.
Solaris Kerberos does not enabled "dns_lookup_kdc" by default.
However, this will be updated soon in Solaris 11.

Java Kerberos should also be updated to enable "dns_lookup_kdc" by default.

EVALUATION http://hg.openjdk.java.net/jdk7/tl/jdk/rev/dbb82636df41