there hasn't been any major change in Kerberos in Tiger. It's
MIT-based and you can see the ChangeLog at:
http://www.opensource.apple.com/darwinsource/10.4/Kerberos-62/KerberosFramework/Kerberos5/Documentation/ChangeLog
You may also want to check out the Mac newsgroups (comp.sys.mac.*).
--
David Magda
[EMAIL PROTECTED] (M.safa) writes:
Please tell me :
-Why this protocol named Kerberos?
- And how Work?
You can find the answers to your questons here:
http://web.mit.edu/kerberos/www/
http://www.cmf.nrl.navy.mil/CCS/people/kenh/kerberos-faq.html
--
David Magda dmagda at ee.ryerson.ca, http
using AUTH_NONE have no identity and are mapped to
the anonymous user nobody by NFS servers. A client
[...]
See also secure_rpc(3NSL). This of course doesn't help the OP.
--
David Magda dmagda at ee.ryerson.ca, http://www.magda.ca/
Because the innovator has
installed on it.
--
David Magda dmagda at ee.ryerson.ca, http://www.magda.ca/
Because the innovator has for enemies all those who have done well under
the old conditions, and lukewarm defenders in those who may do well
under the new. -- Niccolo Machiavelli, _The Prince_, Chapter VI
integrate. You are vague and provide no information
what-so-ever. Which Kerberos software? Which LDAP software? What
operating system(s)?
You may want to go through this:
http://www.catb.org/~esr/faqs/smart-questions.html
--
David Magda dmagda at ee.ryerson.ca, http://www.magda.ca/
Because
. This of course increases risks to
remote exploits but it is a possible temporary solution with the
OpenSSH crew work things out.
Which version of OpenSSH are you using? Supposedly 3.5 fixes some
issues with Kerberos (I don't know specifics).
--
David Magda dmagda at ee.ryerson.ca
Because the innovator has
Kerberos from the US. Some third
parties do actually export Kerberos. For example, the Kermit project
(http://www.kermit-project.org/) includes KFW in their release, but
I'm not sure they actually do a full install of it.
[...]
Try: http://www.crypto-publish.org/
--
David Magda dmagda
David Magda [EMAIL PROTECTED] writes:
[EMAIL PROTECTED] (Luke Howard) writes:
http://www.ietf.org/internet-drafts/draft-brezak-win2k-krb-authz-00.txt
I get a 404. I think the draft has expired (they have a 6 month life
span, yes?).
Did some Googling and found something at:
http
[EMAIL PROTECTED] (Luke Howard) writes:
http://www.ietf.org/internet-drafts/draft-brezak-win2k-krb-authz-00.txt
I get a 404. I think the draft has expired (they have a 6 month life
span, yes?).
--
David Magda dmagda at ee.ryerson.ca
Because the innovator has for enemies all those who have
:
http://modauthkerb.sourceforge.net/index.html
Haven't used it myself. YMMV.
Even if it doesn't do exactly what you want you have the source so
you can hack it.
--
David Magda dmagda at ee.ryerson.ca
Because the innovator has for enemies all those who have done well under
the old conditions
disconnected
fi
# user in authorized group would pass test and continue logging in
CUT ---
[1] www.zsh.org
--
David Magda dmagda at ee.ryerson.ca
Because the innovator has for enemies all those who have done well under
the old conditions, and lukewarm defenders in those who may do well
under
Marc [EMAIL PROTECTED] writes:
Hello,
I am trying to compile OpenSSH 3.1p1 with the GSSAPI into it so I
applied the patches like that:
cd openssh-3.1p1
Why are you compiling the source by hand? One of FreeBSD's greatest
strengths is its ports system.
Can you try, as root:
cd
] /usr/ports/security/pam_krb5
[2] /usr/ports/security/krb5
--
David Magda dmagda at ee.ryerson.ca
Because the innovator has for enemies all those who have done well under
the old conditions, and lukewarm defenders in those who may do well
under the new. -- Niccolo Machiavelli, _The Prince_, Chapter
13 matches
Mail list logo