[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAPv3: The OpenLDAP/Kerberos/SASL soup (was Kerberos and DIGEST-MD5)

--On Wednesday, July 28, 2004 2:48 PM -0400 Igor Brezac <igor@ipass.net> wrote:

On Wed, 28 Jul 2004, Jose Gonzalez Gomez wrote:

  * Regarding Kerberos, Heimdal is preferred against MIT due basically
    to the ability of Heimdal to store its KDC database in LDAP and to
    some annoying threading issues with MIT.

Threading issue should not be a problem with cyrus-sasl 2.1.19 and MIT. All gss calls are wrapped in mutexes.

MIT has also been actively working on fixing the threading issues, so general K5 threading calls should be "more stable" than in the past. I still need to test this (haven't had the time yet). Checkouts from HEAD for MIT include new thread safety features. Slightly OT, but still applies to OpenLDAP access via GSSAPI. ;)


-- Quanah Gibson-Mount Principal Software Developer ITSS/Shared Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html