Date: Sat, 17 Jun 2006 01:11:11 -0500 From: "Michael D. Norwick" <mnorwick@centurytel.net> To: freebsd-questions@freebsd.org Subject: Correct build order for MIT krb5 and ssh Message-ID: <44939CFF.2090702@centurytel.net>
next in thread | raw e-mail | index | archive | help
I'm not sure if this is the right group for this question, but I am still fairly new to FreeBSD so I thought I would start here first. I have been trying to get a working MIT Kerberos KDC on a server running 6.1-Release. I have been able to keep the heimdal version from being built during several past 'make worlds' and I have compiled and installed MIT krb5 from /usr/ports (current per portmanager). I have been getting an error tryiing to start sshd (also built from /usr/ports), it complains about not finding 'libkrb5.so.8' then exits. I have been able to start the KDC but have not gotten much further as I would like to fix the ssh problem first. My questions are as follows: 1. Is libkrb5.so.8 a heimdal library? 2. Which source directories are the correct ones to use, /usr/src/kerberos - /usr/src/secure, or /usr/ports/security/krb5 - /usr/ports/security/openssh? 3. Why are there two different directories i.e; /usr/src and /usr/ports for the same source? 4. How do I get 'kerberized' ssh and give configure directives to the krb5 make to include GSSAPI support? 5. Is there a certain build order for MIT kerberos and openssh? I have read both the Handbook and the 'Complete' book on this subject and have not been able to glean enough information to get me going, Google didn't help much either. I have 6 Debian clients, 2 WinXP clients, and 1 Debian KDC slave and wanted this machine to be an MIT-KDC master and yet avoid the apparent 'kadmin' server incompatibility between Heimdal and MIT Kerberos (which all the Debian clients run). I am also very comfortable with the MIT version. Any words of wisdom would be greatly appreciated. Michael
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44939CFF.2090702>