[4188] in Kerberos
Krb5 "survey" summary, at long last
daemon@ATHENA.MIT.EDU (*Hobbit*)
Mon Nov 14 19:49:58 1994
To: kerberos@MIT.EDU
Date: 11 Nov 1994 05:06:21 EST
From: *Hobbit* <hobbit@asylum.sf.ca.us>
I've been a bit lame about getting the summary turned around, but by now
I probably have all the responses I'm gonna get. I know there are several
folks who remained silent, and someone else mentioned a theory that maybe
10 places around the net were actually using K5...
I got a total of 9 real responses. The short form:
Repliers what they accomplished
-------- ----------------------
9 have krb5 running in some regard [why else would they reply?]
4 definitely have v4 apps talking to v5 KDCs [and servers?]
1 has a separate environment for all the v4 stuff
3 got "all the apps" working
3 got "most of the apps" working
3 didn't say
2 went after getting telnet/telnetd to actually encrypt
8 had to hack everything a lot
4 claim to send their bugs back to MIT
3 started with the Sandia release
2 hate autoconf and junked it
2 tried to offer me commercial versions
Comments:
People with BSD-flavored boxes obviously had more luck with building the
"bsd" apps, although the newer versions do try to be more portable.
Two folks mentioned work on adding support for SecurID and SNK cards. I
will assume that's for getting initial tickets.
The folks who are trying to get telnet/telnetd fully working are discovering
the deal with -DENCRYPTION -DDES_ENCRYPTION and various library problems.
Nobody volunteered information about what principals were necessary in either
universe, or a union of the two, although other mail I've gotten recently
has bits of this information buried within. Would a small writeup about
this and other installation issues be in order, or would I just be reinventing
a wheel that already exists in some obscure place?
Thanx for the replies; I'll get back to some of you individually soon...
_H*
