[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenSSL + Kerberos + Cyrus-SASL + OpenLDAP

To: Quanah Gibson-Mount <quanah@stanford.edu>
Subject: Re: OpenSSL + Kerberos + Cyrus-SASL + OpenLDAP
From: Simon Wilkinson <simon@sxw.org.uk>
Date: Sun, 12 Oct 2003 20:58:03 +0100
Cc: Jim Seymour <jseymour@LinxNet.com>, openldap-software@OpenLDAP.org
In-reply-to: <720457152.1065960693@cadabra-dsl.stanford.edu>
References: <20031012140222.B0F114307@jimsun.LinxNet.com> <720457152.1065960693@cadabra-dsl.stanford.edu>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.3) Gecko/20030312

Quanah Gibson-Mount wrote:

No. And when you build OpenLDAP with Kerberos support, make sure you use Heimdal K5 and not MIT K5 at this time.

Its not the OpenLDAP build that's the issue, but the Cyrus SASL one (the Kerberos calls come from SASL, not OpenLDAP). If you patch Cyrus SASL (my patches are available upon request) to mutex protect all of the calls to the GSSAPI libraries then you can run with MIT Kerberos without any issues.

Cheers,

Simon

Follow-Ups:
- Re: OpenSSL + Kerberos + Cyrus-SASL + OpenLDAP
  - From: Ben Poliakoff <benp@imap.reed.edu>
- Re: OpenSSL + Kerberos + Cyrus-SASL + OpenLDAP
  - From: jseymour@LinxNet.com (Jim Seymour)

References:
- OpenSSL + Kerberos + Cyrus-SASL + OpenLDAP
  - From: jseymour@LinxNet.com (Jim Seymour)
- Re: OpenSSL + Kerberos + Cyrus-SASL + OpenLDAP
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

Prev by Date: Re: ACL group.regex in 2.1.22
Next by Date: Re: ACL group.regex in 2.1.22
Index(es):
- Chronological
- Thread