Date: Mon, 31 Jan 2011 22:40:59 +0200 From: Vallo Kallaste <kalts@estpak.ee> To: Jan Henrik Sylvester <me@janh.de> Cc: questions-list freebsd <freebsd-questions@freebsd.org> Subject: Re: FreeBSD 8.2: state of Kerberos, GSS-API and (Cyrus) SASL? Message-ID: <20110131204059.GB17485@hape.internal> In-Reply-To: <4D46E6A8.8040408@janh.de> References: <20110131154759.GA17485@hape.internal> <4D46E6A8.8040408@janh.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Jan 31, 2011 at 05:43:20PM +0100, Jan Henrik Sylvester <me@janh.de> wrote: > >cyrus-sasl2 integration with base Heimdal? With ports Heimdal? Can I > >replace base Heimdal with one from ports, is it supported? Any > >make.conf knobs to fiddle with? Any info appreciated. > > I am struggling with exactly the same problem. Unfortunately, I got > no reply on this list about it: > > http://lists.freebsd.org/pipermail/freebsd-questions/2011-January/226495.html > > If you get any further, please, tell me. I am thinking about > reposting my question to a different list: stable as that is where > the earlier discussions happened or ports as that seems more > appropriate. > > What I have not tried, yet, is using MIT Kerberos from ports instead > of Heimdal, but since we use Heimdal here for everything, I am kind > of reluctant. (Otherwise, I would have to setup some Linux > server...) > I looked around for knobs to disable building base Heimdal and other kerberised bits in hope that security/heimdal could be installed into /usr. Nothing in make.conf but I found new /etc/src.conf file, sure things have changed since 5.1 days when I left. Oh the horror days of 5.x, but I digress. Anyway, I think that by fiddling with src.conf knobs one can suppress building the base Heimdal and all other kerberised things. After one modified build and installworld the old bits lying around should be removed and Heimdal port installed into /usr by defining HEIMDAL_HOME. This is for start, clean base for further exploration. On the other hand I found the following patches in the security/heimdal commit log: http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/152030 I will try that first, but this will be no-go in production because those patches aren't probably committed to -STABLE. -- Vallo
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20110131204059.GB17485>