[1037] in arla-drinkers
Re: "tokens" script unusable
daemon@ATHENA.MIT.EDU (Assar Westerlund)
Sat Jul 31 00:40:47 1999
From owner-arla-drinkers@stacken.kth.se Sat Jul 31 04:40:45 1999
Return-Path: <owner-arla-drinkers@stacken.kth.se>
Delivered-To: arla-drinkers-mtg@bloom-picayune.mit.edu
Received: (qmail 10043 invoked from network); 31 Jul 1999 04:40:44 -0000
Received: from unknown (HELO sundance.stacken.kth.se) (130.237.234.41)
by bloom-picayune.mit.edu with SMTP; 31 Jul 1999 04:40:44 -0000
Received: (from majordom@localhost)
by sundance.stacken.kth.se (8.8.8/8.8.8) id GAA29509
for arla-drinkers-list; Sat, 31 Jul 1999 06:34:53 +0200 (MET DST)
Received: from assaris.sics.se (assaris.sics.se [193.10.66.108])
by sundance.stacken.kth.se (8.8.8/8.8.8) with ESMTP id GAA29505
for <arla-drinkers@stacken.kth.se>; Sat, 31 Jul 1999 06:34:47 +0200 (MET DST)
Received: (from assar@localhost) by assaris.sics.se (8.9.3/8.7.3) id GAA55297; Sat, 31 Jul 1999 06:35:30 +0200 (CEST)
From: Assar Westerlund <assar@stacken.kth.se>
To: uri@watson.ibm.com
Cc: arla-drinkers@stacken.kth.se
Subject: Re: "tokens" script unusable
References: <9907301923.AA29490@buoy.watson.ibm.com>
Mime-Version: 1.0 (generated by tm-edit 7.68)
Content-Type: text/plain; charset=US-ASCII
Date: 31 Jul 1999 06:35:26 +0200
In-Reply-To: uri's message of "Fri, 30 Jul 1999 15:23:46 -0400 (EDT)"
Message-ID: <5loggtmo6p.fsf@assaris.sics.se>
Lines: 27
X-Mailer: Gnus v5.5/Emacs 19.34
Sender: owner-arla-drinkers@stacken.kth.se
Precedence: bulk
uri <uri@watson.ibm.com> writes:
> "tokens" script that comes with arla, sems to be 100% unusable.
> Because it relies on non-kerberos option "-tokens" which no
> standard "klist" recognizes.
That's because you need that non-standard functionality to be able to
see what tokens exist. In other words, with `standard' kerberos
programs there's no way of fetching the tokens.
And as Love already has mentioned, Chris Wing contributed a tokens
programs that doesn't require this that's part of the current sources
and will be included in the next release.
> Please, don't make arla a part of kth-krb kit.
We try not to, but it's hard:
a. we need functionality that's not part of `standard' kerberos
(namely that provided by libkafs)
b. we can't use american kerberos distributions and then it's very
hard to test that everything works with them. For this we rely on you
and other US-users to provide us with bug reports. Thanks for
providing them.
c. we're lazy and it's not always clear when we can assume that some
function is part of all kerberos distributions.
/assar