Re: Kerberos 5 Support for OpenLDAP-release

["Kurt D. Zeilenga" <Kurt@OpenLDAP.org>]

I have to agree with Booker here.  The current Kerberos
support should be deprecated in favor of a well designed,
well implemented SASL solution.  I do not think anything
else will ever obtain enough support to be widely deployed.
IETF LDAPext WG would surely object to any non-SASL
approachs to support KerberosV.

I have already committed the basic SASL infrastructure,
I'd love to see:
	DIGEST-MD5 method (self contained implementation)
	Cyrus SASL integration (SASL plug in support)
	SASL/StartTLS

Kurt