[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Kerberos 5 Support for OpenLDAP-release

> From:    Booker Bense <bbense@networking.stanford.edu>
> To:      "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

> > What about AFS Kerberos?
> - GACK, is anybody really using that? It's a rat's nest that
> should be avoided at all costs. Most AFS sites that I know
> about use some version of the last Cygnus K4 source code
> release as their K4 libraries. Getting things to compile
> with the AFS k4 libraries is often tricky as there are lot's
> of old UCB calls in the code. On Solaris 2.5.1 and 2.6 you
> have to be very careful with the order of library loading
> in order to get binaries that don't core dump randomly.
> I suspect it would lead into a configure nightmare.  

All true.  I wouldn't suggest supporting the use of AFS Kerberos
libraries.  AFAIK, UMich LDAP 3.3 didn't support the use of AFS
Kerberos libraries.  What it did do, is support an alternate
string-to-key function in ud.  I don't think that's terribly hard to
support, since the string-to-key function is already in the ud code.