[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Incomplete documentation

To: Martin MOKREJŠ <mmokrejs@natur.cuni.cz>
Subject: Re: Incomplete documentation
From: Love <lha@stacken.kth.se>
Date: Fri, 19 Sep 2003 01:35:25 +0200
Cc: heimdal-discuss@sics.se
In-Reply-To: <Pine.OSF.4.51.0309182126030.456757@tao.natur.cuni.cz> (Martin MOKREJŠ's message of "Thu, 18 Sep 2003 21:34:57+0200 (CEST)")
References: <Pine.OSF.4.51.0309041617460.382176@tao.natur.cuni.cz><xofoey01uwp.fsf@blubb.pdc.kth.se><Pine.OSF.4.51.0309041641310.382176@tao.natur.cuni.cz><xofk78o1lyc.fsf@blubb.pdc.kth.se><Pine.OSF.4.51.0309172328290.370291@tao.natur.cuni.cz><Pine.OSF.4.51.0309181817060.456757@tao.natur.cuni.cz><amr82ec89p.fsf@nutcracker.stacken.kth.se><Pine.OSF.4.51.0309182126030.456757@tao.natur.cuni.cz>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.1002 (Gnus v5.10.2) Emacs/21.3 (berkeley-unix)


Martin MOKREJŠ <mmokrejs@natur.cuni.cz> writes:

> On Thu, 18 Sep 2003, Love wrote:
>
>>
>> Martin MOKREJ? <mmokrejs@natur.cuni.cz> writes:
>>
>> > On Wed, 17 Sep 2003, Martin MOKREJ? wrote:
>> >
>> > I seems everyone is either busy or doesn't know anwers to my questions ...
>> > and I have continuation already ... :)
>>
>> mmmm, upgrading ssh.
>
> Well, the openssh people don't know much about krb4/5, so I have to ask
> here ... :)

I was busy upgradeing openssh and that the reson I didn't answered your
mail.

>> heimdal think it must use the same crypto lib as the krb4 stuff if compiled
>> with kerberos 4 support, it will refuse to use anything else.
>
> OK, then when krb4 was compiled without -lcrypto and heimdal's configure is
> also asked to configur ewithout -lcrypto, this check in configure doesn't
> make sense and maybe it's clear then why "-lcrypto" is missing on the link
> line. But why does it test for AES when it's present only in -lcrypto ...?

Because of historicals reasons.

>> yes, current heimdal requires openssl>=0.9.7, and there is not released
>> kth-krb4 that can handle that.
>
> Oh, finally I hear it.
>
> But why heimdal cannot get compiled without -lcrypto when -lcrypto was also
> not used for krb4 build ... I don't understand.
>
> That means I have to use openssl-0.9.6 right and build krb4 and heimdal
> against it?

Yes, that would work if you used heimdal 0.6 or a 0.6 snapshot. 0.9.6
doesn't have AES support, so it won't work for current snapshots.

If some day kth-krb-1.3 was relased it could be used with 0.9.7...

Love

PGP signature

References:
- Incomplete documentation
  - From: Martin MOKREJŠ <mmokrejs@natur.cuni.cz>
- Re: Incomplete documentation
  - From: Martin MOKREJŠ <mmokrejs@natur.cuni.cz>
- Re: Incomplete documentation
  - From: Love <lha@stacken.kth.se>
- Re: Incomplete documentation
  - From: Martin MOKREJŠ <mmokrejs@natur.cuni.cz>

Prev by Date: 3DES or equivalent telnet encryption with kerberos
Next by Date: Re: Incomplete documentation
Prev by thread: Re: Incomplete documentation
Next by thread: Re: Incomplete documentation
Index(es):
- Date
- Thread