[5368] in Kerberos
Re: Looking for X11R6, Kerberos 5 info
daemon@ATHENA.MIT.EDU (Jonathan Stone)
Mon Jun 12 06:20:42 1995
To: kerberos@MIT.EDU
Date: 12 Jun 1995 09:53:17 GMT
From: jonathan@DSG.Stanford.EDU (Jonathan Stone)
Reply-To: jonathan@DSG.Stanford.EDU
In article <199506120213.WAA06312@dragons-lair.MIT.EDU>, tlyu@MIT.EDU (Tom Yu) writes:
> >Date: 11 Jun 1995 23:35:27 GMT
> >From: leres@ren.ee.lbl.gov (Craig Leres)
> >
> >I rebuilt my X11R6 tree with Kerberos 5 support enabled but have been
> >so far unable to configure a setup that successfully uses it.
What exactly were you (Craig) trying to get to work?
I hacked krb5b4pl3 to use krb5 for authentication (i.e., in xdm) in
X11R6 pl10 or thereabouts. I can make patches available for FTP if
that would be useful in the meantime. Or were you assuming that
tgts were obtained externally to X11?
I don't think the xdm-authentication krb5 code as shipped by the X
Consortium ever worked, in general: it has erroneous assumptions about
password length and other bugs. There are also some *horrendous*
shared-library gotchas, at least on SunOS and similar
dynamically-linked shared-library designs.
> I am in the process of changing the X11R6 krb5 support to match the
> new krb5 API. I am also working on adding stream encryption. This
> will cause the old krb5 authentication mechanism to become deprecated
> eventually. The changes should be done around the end of the summer.
Summer this-yearish or next-yearish? :)
