Cannot locate Krb5Login module

nccgroup / Berserko

Burp Suite extension to perform Kerberos authentication

GNU Affero General Public License v3.0

104 stars 15 forks source link

Cannot locate Krb5Login module #5

Open usus1 opened 5 years ago

usus1 commented 5 years ago

While trying to test domain settings I get this type of error.

Connected to port 88, but failed to contact Kerberos service: No LoginModule found for com.sun.security.auth.module.Krb5LoginModule

This seems to work few moths ago.

My env:

OS: Linux kali-i3 4.19.0-kali4-amd64 #1 SMP Debian 4.19.28-2kali1 (2019-03-18) x86_64 GNU/Linux

Java: openjdk version "11.0.3" 2019-04-16 OpenJDK Runtime Environment (build 11.0.3+1-Debian-1) OpenJDK 64-Bit Server VM (build 11.0.3+1-Debian-1, mixed mode, sharing)

Burp: 2.0.20beta Pro

Thanks in advance

va-14 commented 5 years ago

I've the same issue: Connected to port 88, but failed to contact Kerberos service: No LoginModule found for com.sun.security.auth.module.Krb5LoginModule

Failed to acquire TGT: No LoginModule found for com.sun.security.auth.module.Krb5LoginModule

va-14 commented 5 years ago

I tried older versions, different java versions, different OS. But I sort of found a way to get the plugin working. When I use the symlink on Mac/Kali/Win It cannot resolve. When I start the program with java -jar burpsuite_pro_v2.1.jar it works on the three platforms.

rtt-ncc commented 5 years ago

Thanks both of you for reporting this, sorry for taking some time to pick it up. Just so that I can try to reproduce - did the problem occur on Windows as well as on Kali?

va-14 commented 5 years ago

Thanks, yes and in Mac

rtt-ncc commented 5 years ago

Seems that Burp v2 is now using OpenJDK instead of the Oracle JDK, and the version of OpenJDK being shipped doesn't include the jdk.security.auth module, which contains the Kerberos classes required by Berserko.

I'll speak to the PortSwigger guys to see if it's possible to have this included.

Until then, as you say, the only way to get it work will be running Burp on top of a different JRE/JDK :-(

usus1 commented 5 years ago

Thanks Richard

Champion0081 commented 5 years ago

I can confirm the same here on windows java 1.8.0.

@rtt-ncc do we have any news on this?

rtt-ncc commented 5 years ago

@mattimac do you mean you encountered the same error when using a JDK other than that shipped with Burp? If so can you provide the output of java -version?

If you didn't mean that, see the note at the top of README.md in this repo.

Either way, Portswigger have said that this should be fixed in v2.1.03 of Burp (not released yet).

Champion0081 commented 5 years ago

I am not sure what is shipped with the current version but mine is

java version "1.8.0_201"
Java(TM) SE Runtime Environment (build 1.8.0_201-b09)

I think it may be worth mentioning in the readme that the fix will probably come with that version. I understand that for now there is no timeframe estimated for this. Thanks so much for fast response Richard.

rtt-ncc commented 5 years ago

See update to README file - this problem was fixed by PortSwigger in v2.1.03 of Burp. I have verified and it seems to be fine. If I don't hear of any more problems I'll close this issue soon.

Champion0081 commented 5 years ago

Fixed for me too.