From owner-freebsd-security@FreeBSD.ORG Tue Aug 5 09:40:19 2003 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6D24A37B401 for ; Tue, 5 Aug 2003 09:40:19 -0700 (PDT) Received: from mail.seekingfire.com (coyote.seekingfire.com [24.72.10.212]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4C8B143F93 for ; Tue, 5 Aug 2003 09:40:18 -0700 (PDT) (envelope-from tillman@seekingfire.com) Received: from blues.seekingfire.prv (blues.seekingfire.prv [192.168.23.211]) by mail.seekingfire.com (Postfix) with ESMTP id 581B52F5 for ; Tue, 5 Aug 2003 10:40:15 -0600 (CST) Received: (from tillman@localhost) by blues.seekingfire.prv (8.11.6/8.11.6) id h75GeF313591 for FreeBSD-Security@freebsd.org; Tue, 5 Aug 2003 10:40:15 -0600 Date: Tue, 5 Aug 2003 10:40:15 -0600 From: Tillman To: FreeBSD Security Message-ID: <20030805104015.W21076@seekingfire.com> References: <200307301553.40385.metrol@metrol.net> <200308041626.41760.metrol@metrol.net> <20030804220217.U21076@seekingfire.com> <200308042257.01280.metrol@metrol.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <200308042257.01280.metrol@metrol.net>; from metrol@metrol.net on Mon, Aug 04, 2003 at 10:57:01PM -0700 X-Urban-Legend: There is lots of hidden information in headers Subject: Re: Kerberos to file server X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Aug 2003 16:40:19 -0000 On Mon, Aug 04, 2003 at 10:57:01PM -0700, Michael Collette wrote: > On Monday 04 August 2003 09:02 pm, Tillman wrote: > > The handbook is out of date -- it cover Kerberos 4, not 5. Check out my > > previous posting to the questions@ list on the topic: > > > > http://www.mail-archive.com/freebsd-questions@freebsd.org/msg19447.html > > I have been looking at those docs. The part I don't get are the file paths > involved, as they're very non-FreeBSD'ish. /usr/local/var?? Like many 3rd-party packages, they put things in locations that make sense to them and then write their documentation to match. > Do I need to alter environment variables to put things into their proper > places, or create the directories that it expects? I would expect config > files for a port to be in /usr/local/etc/krb5 or some such. krb5.conf and krb5.keytab are an exception to my explanation below, they reside in /etc. > BTW, working with the MIT version now, since installing the port and all. > Also got the pam_krb5 port in there as well. I think I'm about ready to > really muck this thing up once I understand what all I need to do about file > paths. Ignore the file paths in the MIT documentation - the FreeBSD port puts things in the "correct" paths. Take a peek through /usr/ports/security/krb5/pkg-plist for details (pre-pending /usr/local/ to the paths you find in there). -T -- Knowing others is intelligence. Knowing yourself is true wisdom. - Lao Tse