[Date Prev][Date Next] [Chronological] [Thread] [Top]

KTH support for openldap

To: openldap-devel@OpenLDAP.org
Subject: KTH support for openldap
From: Booker Bense <bbense@networking.stanford.edu>
Date: Thu, 30 Sep 1999 16:01:36 -0700 (PDT)
In-reply-to: <199909291341.JAA27279@terminator.rs.itd.umich.edu>

[ My horror at the suggested use of AFS krb libraries deleted]
> 
> All true.  I wouldn't suggest supporting the use of AFS Kerberos
> libraries.  AFAIK, UMich LDAP 3.3 didn't support the use of AFS
> Kerberos libraries.  What it did do, is support an alternate
> string-to-key function in ud.  I don't think that's terribly hard to
> support, since the string-to-key function is already in the ud code.
> 

- This is one place ( among many ) where KTH gets it spot on. 
It automagically works whether you're using afs_string_to_key
or des_string_to_key. 

- Everything has compiled out of the box except ud and the
back-ldbm. The common problem between them is that 

	ac/unistd.h 

includes  /usr/include/crypt.h . This causes a prototype clash
for the des_encrypt function. Ud requires another simple fix 
to allow it to use krb_get_pw_in_tkt rather than krb_get_in_tkt. 

- I have #ifdef HAVE_KTH_KERBEROS code that fixes both problems,
but I don't have a test to set HAVE_KTH_KERBEROS. There is at least
one include file that looks like it would be a pretty good flag
that you have KTH kerberos:

	krb-archaeology.h

- Anyway, let me know how you'd like to deal with this. 

- Booker C. Bense

References:
- Re: Kerberos 5 Support for OpenLDAP-release
  - From: wesley.craig@umich.edu

Prev by Date: RE: Developers wanted
Index(es):
- Chronological
- Thread