On Wednesday, February 22, 2006 04:08:33 PM -0800 Russ Allbery
[EMAIL PROTECTED] wrote:
avillarrealpouw [EMAIL PROTECTED] writes:
I have been testing the Fedora distribution of Kerberos and tripped on a
problem: after upgrading from Fedora core 3 to Fedora core 4 in my KDC
the KDC stopped
On Friday, February 24, 2006 10:15:32 AM -0600 Douglas E. Engert
[EMAIL PROTECTED] wrote:
I am looking for other Kerberos sites that use Oracle with or without the
ASO who would like to see the ASO improved. I would also be interested to
know if you have approached Oracle on improvements,
Hello kerb masters,
I am currently working on porting a Linux server to windows that uses
Cyrus SASL to do MIT Kerberos (v5) as well as Digest, etc. Windows
2000/2003 KDC as well as Windows 2000/2003 for app server and
2000/2003/XP for client.
My question is as follows:
Has anyone been able to
Nicolas Williams wrote:
Sounds like a bug in the GSS-API library. Is this the MIT gss library?
Nico
Hard for me to tell exactly. The gssapi_krb5 shared library appears to
be from MIT, but it isn't clear that this is where the problem lies.
The libgssapi-0.7 source package is one that I
[ cross-posted both to openssh-unix-dev and kerberos@mit.edu as this
question has been asked on both lists ]
The first and most important point to note here is that the problem you're
seeing isn't a bug in OpenSSH - it's a problem with the libraries that
your vendor is shipping, and in
Jeffrey Altman wrote:
What is gss_union_name_t defined as? This is not a GSS type.
gss_accept_sec_context() exports a gss_name_t object and
gss_export_name() takes a gss_name_t as input. gss_name_t when produced
by a krb5 gss mechanism will be a krb5_principal. However, gss_name_t
is
[EMAIL PROTECTED] wrote:
GSSAPI is an IETF standard. If your GSSAPI library doesn't allow
gss_export_name to be called with the client name returned by
gss_accept_sec_context then it is broken. The type of the client name
is, as others have noted on the Kerberos mailing list, opaque. An
On Tue, 28 Feb 2006, Eric Youngdale wrote:
When I first built openssh with kerberos turned on, I just ran configure, and
the resulting Makefile was using libgssapi.so,
That's very odd. Recent OpenSSH's use krb5-config to work out which
libraries to use, and MIT's krb5-config certainly tells