From owner-freebsd-current Sat Oct 28 09:39:04 1995 Return-Path: owner-current Received: (from root@localhost) by freefall.freebsd.org (8.6.12/8.6.6) id JAA28075 for current-outgoing; Sat, 28 Oct 1995 09:39:04 -0700 Received: from grunt.grondar.za (grunt.grondar.za [196.7.18.129]) by freefall.freebsd.org (8.6.12/8.6.6) with ESMTP id JAA28062 for ; Sat, 28 Oct 1995 09:38:55 -0700 Received: from grumble.grondar.za (grumble.grondar.za [196.7.18.130]) by grunt.grondar.za (8.6.12/8.6.9) with ESMTP id SAA05713 for ; Sat, 28 Oct 1995 18:38:30 +0200 Received: from localhost (localhost [127.0.0.1]) by grumble.grondar.za (8.6.12/8.6.9) with SMTP id SAA18399 for ; Sat, 28 Oct 1995 18:38:29 +0200 Message-Id: <199510281638.SAA18399@grumble.grondar.za> X-Authentication-Warning: grumble.grondar.za: Host localhost didn't use HELO protocol To: current@freebsd.org Subject: Secure telnet showstopper Date: Sat, 28 Oct 1995 18:38:29 +0200 From: Mark Murray Sender: owner-current@freebsd.org Precedence: bulk Hi folks A while back when proposed the ebones/secure cleanup, I suggested that secure telnet move to eBones. This suggestion now rears its ugly head again. Secure telnet is only secure if there is authentication, and for us, that means Kerberos/eBones. (Other possibilities, not used by us, include RSA, SPX, Kerberos5) Right now we have the disastrous situation that secure telnet _*requires*_ kerberos to work, but mit is a part of the 'secure' distribution. This obviously does not work, because if a user installs secure and no eBones, they do not get required libraries (libdes, libkrb etc). I propose that we move it immediately to eBones, and do this for 2.1 as well. If I don't get objections, I will start doing this RSN. (a day or so). In the slightly longer term, I will be bringing in the new DES library... M -- Mark Murray 46 Harvey Rd, Claremont, Cape Town 7700, South Africa +27 21 61-3768 GMT+0200 Finger mark@grumble.grondar.za for PGP key