Using Samba 3.0.20B on RHL 9. Windows 2000 Service Pack 4.
MIT Kerberized Telnet is hard coded to use des-cbc-crc and expects to use the service principal name as salt (i.e. host/<fqdn>@REALM).
However setting UPN causes Win2k server to use the UPN as salt instead.
Samba populates UPN with HOST/<HostShortName>@REALM.
Since this results in the wrong salt MIT Kerberized Telnet breaks.
Suggest clearing the UPN and not relying on it (see ldap.c:ads_connect) or changing the UPN to be host/<fqdn>@REALM
Okay I think I might have been a little premature on this bug report. My bad. I think I will close it and reopen it later if I convince myself this is really is a problem - sorry.