[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: kerberos support in ssh/lsh

>>>>> "Simon" == Simon Wilkinson <sxw@dcs.ed.ac.uk> writes:

    Simon> I adapted a set of patches for Heimdal-OpenSSH integration
    Simon> to use the MIT Kerberos libraries. In general, it appears

I think you will encounter the biggest problems, when trying to link
the executable, as the list of libraries is different for both Heimdal
and MIT.

I think MIT requires:
-lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err

bug Heimdal requires:
-lgssapi -lkrb5 -ldes -lasn1 -lroken -lcrypt -lcom_err

at least, if you use gssapi.

Hopefully, this yucky situation will be fixed when libtool 1.4 is
released, and interdependencies between un-installed shared libraries
are supported. You could also fix it by splitting the source code
apart for each library, but that would require significant more work
(and taken to this extreme, may not even be desirable).

(then again, perhaps Heimdal should use -lgssapi_krb5, like MIT...
There is nothing to say that Kerberos is the only allowed
implementation of gssapi.)
Brian May <bam@snoopy.apana.org.au>