[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Kerberos 5 Support for OpenLDAP-release

To: Booker Bense <bbense@networking.stanford.edu>
Subject: Re: Kerberos 5 Support for OpenLDAP-release
From: wesley.craig@umich.edu
Date: Wed, 29 Sep 1999 09:41:56 -0400
Cc: openldap-devel@OpenLDAP.org
In-reply-to: Your message of "Tue, 28 Sep 1999 10:40:14 PDT." <Pine.GSO.4.10.9909280958010.22974-100000@telemark.stanford.edu>

> From:    Booker Bense <bbense@networking.stanford.edu>
> To:      "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

> > What about AFS Kerberos?
> 
> - GACK, is anybody really using that? It's a rat's nest that
> should be avoided at all costs. Most AFS sites that I know
> about use some version of the last Cygnus K4 source code
> release as their K4 libraries. Getting things to compile
> with the AFS k4 libraries is often tricky as there are lot's
> of old UCB calls in the code. On Solaris 2.5.1 and 2.6 you
> have to be very careful with the order of library loading
> in order to get binaries that don't core dump randomly.
> I suspect it would lead into a configure nightmare.  

All true.  I wouldn't suggest supporting the use of AFS Kerberos
libraries.  AFAIK, UMich LDAP 3.3 didn't support the use of AFS
Kerberos libraries.  What it did do, is support an alternate
string-to-key function in ud.  I don't think that's terribly hard to
support, since the string-to-key function is already in the ud code.

:wes

Follow-Ups:
- KTH support for openldap
  - From: Booker Bense <bbense@networking.stanford.edu>

References:
- Re: Kerberos 5 Support for OpenLDAP-release
  - From: Booker Bense <bbense@networking.stanford.edu>

Prev by Date: RE: Developers wanted
Next by Date: RE: Developers wanted
Index(es):
- Chronological
- Thread