[Date Prev][Date Next]
Re: Kerberos 5 Support for OpenLDAP-release
I have to agree with Booker here. The current Kerberos
support should be deprecated in favor of a well designed,
well implemented SASL solution. I do not think anything
else will ever obtain enough support to be widely deployed.
IETF LDAPext WG would surely object to any non-SASL
approachs to support KerberosV.
I have already committed the basic SASL infrastructure,
I'd love to see:
DIGEST-MD5 method (self contained implementation)
Cyrus SASL integration (SASL plug in support)