[1488] in Kerberos_V5_Development
Re: kadm5 db names
daemon@ATHENA.MIT.EDU (Marc Horowitz)
Fri Aug 2 17:52:08 1996
To: krbdev@MIT.EDU
Date: Fri, 02 Aug 1996 17:52:01 EDT
From: Marc Horowitz <marc@MIT.EDU>
>> The kadm5 system supports relations in kdc.conf that control the admin
>> database file name and admin database lock file name. If they are not
>> specified, they default to <dbname>.kadm5 and <dbname>.kadm5.lock.
I would agree with this change.
>> If people really think that the database support needs to stay
>> in krb5_aname_to_localname, I need to take drastic steps to get Linux
>> shared libraries working again. I can either:
Ted and I have discussed several times the possibility of removing the
db support in aname. If the db stuff in libkrb5 is causing a problem,
then perhaps aname db stuff should be ripped out for beta7. This
sounds like an excellent plan to me.
Basically, we thought of every application which used local names, and
every single one of them has an authorization facility of its own.
This pretty much agrees with what jay said.
Bill: you said you use aname_to_localname. Do you use the db
functionality or the rule functionality? Is there a reason not to use
the latter?
Marc
