[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

OpenSSL patch for Heimdal 0.3d

To: heimdal-discuss@sics.se
Subject: OpenSSL patch for Heimdal 0.3d
From: GOMBAS Gabor <gombasg@inf.elte.hu>
Date: Fri, 5 Jan 2001 23:26:29 +0100
Mail-Followup-To: heimdal-discuss@sics.se
Sender: owner-heimdal-discuss@sics.se

Hello,

If anyone is interested, my patch for making Heimdal use the crypto library
from OpenSSL instead of the included lib/des library, can be found at
http://people.inf.elte.hu/gombasg/patches/heimdal-openssl.2001-01-04
As I have been told the Hungarian academic network will be down for general
reorganization this weekend, so our web server might not be accessible
during that period.

The patch should support OpenSSL-0.9.6; it was tested on AIX 4.3.3.0,
Solaris 7 and Debian Linux 2.2 (well, the actually tested version contains
more local changes, but they are orthogonal to the changes in the published
patch).

One important change: if your OS does not have /dev/urandom, you need to
install & run egd (see http://www.lothar.com/tech/crypto). You must add
a line containing "egd_socket = /where/the/egd/socket/is" to the
[libdefaults] section in krb5.conf. If you do not do this, Heimdal will
abort your applications. The upside is that Heimdal will no longer lock
up if an application happens to disable SIGALRM :)

Comments are welcome.

Gabor

-- 
Gabor Gombas                                       Eotvos Lorand University
E-mail: gombasg@inf.elte.hu                        Hungary

Follow-Ups:
- Re: OpenSSL patch for Heimdal 0.3d
  - From: Brian May <bam@snoopy.apana.org.au>

Prev by Date: Re: heimdal and OpenSSL
Next by Date: Re: OpenSSL patch for Heimdal 0.3d
Prev by thread: Re: krb5_get_init_creds_password: ASN.1 value too large
Next by thread: Re: OpenSSL patch for Heimdal 0.3d
Index(es):
- Date
- Thread