From owner-freebsd-doc@FreeBSD.ORG Thu Sep 4 12:04:33 2003 Return-Path: Delivered-To: freebsd-doc@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 12C1E16A4BF for ; Thu, 4 Sep 2003 12:04:33 -0700 (PDT) Received: from mail.seekingfire.com (coyote.seekingfire.com [24.72.10.212]) by mx1.FreeBSD.org (Postfix) with ESMTP id BA03B43FBD for ; Thu, 4 Sep 2003 12:04:31 -0700 (PDT) (envelope-from tillman@seekingfire.com) Received: from blues.seekingfire.prv (blues.seekingfire.prv [192.168.23.211]) by mail.seekingfire.com (Postfix) with ESMTP id C295C31B for ; Thu, 4 Sep 2003 13:04:30 -0600 (CST) Received: (from tillman@localhost) by blues.seekingfire.prv (8.11.6/8.11.6) id h84J4Sl11491 for FreeBSD-doc@FreeBSD.org; Thu, 4 Sep 2003 13:04:28 -0600 Date: Thu, 4 Sep 2003 13:04:28 -0600 From: Tillman Hodgson To: FreeBSD-doc@FreeBSD.org Message-ID: <20030904130428.W21559@seekingfire.com> References: <20030903163616.04ac91aa.trhodes@FreeBSD.org> <20030904152353.GH25063@submonkey.net> <20030904111531.S21559@seekingfire.com> <20030904124922.009c69c1.trhodes@FreeBSD.org> <20030904114444.U21559@seekingfire.com> <20030904131753.4e16c97c.trhodes@FreeBSD.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20030904131753.4e16c97c.trhodes@FreeBSD.org>; from trhodes@FreeBSD.org on Thu, Sep 04, 2003 at 01:17:53PM -0400 X-Urban-Legend: There is lots of hidden information in headers Subject: Re: [Review Request] Kerberose 5 patch. Version two! X-BeenThere: freebsd-doc@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Documentation project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Sep 2003 19:04:33 -0000 On Thu, Sep 04, 2003 at 01:17:53PM -0400, Tom Rhodes wrote: > On Thu, 4 Sep 2003 11:44:44 -0600 > Tillman Hodgson wrote: > > I promise to learn SGML (and not attempt to preach LaTeX ;-) ) sometime > > soon *grin*. > > I like LaTeX, I think. :P > > > Well, I have an idea on how to do this. Something like: If I could submit documentation in LaTeX I'd become a prolific writer ;-) > Well, I removed insist. Actually, I came up with this: > > > For large networks with a properly configured > BIND DNS server, the > above example could be trimmed to: > > [libdefaults] > default_realm = example.org > > With the following lines being appended to the > exmple.org zonefile: Spelling: example.org > _kerberos._udp IN SRV 01 00 88 kerberos.example.org. > _kerberos._tcp IN SRV 01 00 88 kerberos.example.org. > _kpasswd._udp IN SRV 01 00 464 kerberos.example.org. > _kerberos-adm._tcp IN SRV 01 00 749 kerberos.example.org. > _kerberos IN TXT EXAMPLE.ORG. > > This gives us a sentence which reads as "it could be done this way, > but you are not required to do so." I like it. It even says how to do if you want to do it that way. > > Changing the permissions on /tmp for all workstations might be a > > contentious recommendation. Most Kerberos applications will take an > > environment variable to tell them to look elsewhere for the ticket, > > though this isn't truly standardized and still doesnt' solve the "root > > user problem". > > > > I'm not sure that this is a problem that documentation can solve :-) > > Then I'll ignore the change I was going to make and just leave the > paragraph as it was. Thanks!! No problem :-) The /tmp issue affects lots of different software. I'd like to see some good documentation on the issues and some /standardized/ solutions to them developed. That's something that would make a great USENIX paper if anybody has ideas on how to tackle it :-) -T -- To enjoy the flavor of life, take big bites. Moderation is for monks. - Robert Heinlein