Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 26 Feb 2009 10:48:35 -0700
From:      Tim Judd <tajudd@gmail.com>
To:        FreeBSD Questions <freebsd-questions@freebsd.org>
Subject:   Heimdal vs MIT KerberosV
Message-ID:  <ade45ae90902260948s1a74ca80qbcfdbc5a1c4949e@mail.gmail.com>

next in thread | raw e-mail | index | archive | help
Hello, Experts..

MIT and I are both located in the US -- so the export law from the US/to the
US isn't applicable.  I can understand why the included KerberosV
implementation is the one from Sweeden, due to these export laws.  I know
there's a knob (WITHOUT_KERBEROS) to exclude it from the base system, but
how can I replace the Sweeden-based Heimdal implementation in favor of the
MIT implementation.  This isn't expected to be a long drawn out process, one
that takes world hacking to work.  It'd be just as easy for me to build MIT
krb5 from ports and let it install into /usr/local.  That's fine -- but I
wanted to stretch my knowledge on FreeBSD and the building process and would
like to know what it would take to drop in MIT in exchange for Heimdal.  I'd
guess a couple possible ways to do it, but I wanted to ask the experts
before I broke FreeBSD.  :)

Options as I see them:
   1) Take the port directory and replace the contents of /usr/src/kerberos5
with security/krb5 from ports
   2) Take the tarball from MIT and drop it into /usr/src/kerberos5


If anything were to work, I'd expect #1 to.  So what is the expert's
opinion, is it really this easy?

Thanks, everyone.  Appreciate your time and input.

--Tim



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?ade45ae90902260948s1a74ca80qbcfdbc5a1c4949e>