From owner-freebsd-ports@FreeBSD.ORG Fri Aug 28 22:42:05 2009 Return-Path: Delivered-To: ports@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 21912106564A; Fri, 28 Aug 2009 22:42:05 +0000 (UTC) (envelope-from delphij@delphij.net) Received: from tarsier.delphij.net (delphij-pt.tunnel.tserv2.fmt.ipv6.he.net [IPv6:2001:470:1f03:2c9::2]) by mx1.freebsd.org (Postfix) with ESMTP id BFDD68FC12; Fri, 28 Aug 2009 22:42:04 +0000 (UTC) Received: from tarsier.geekcn.org (tarsier.geekcn.org [211.166.10.233]) (using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits)) (No client certificate requested) by tarsier.delphij.net (Postfix) with ESMTPS id 0A0DA5C06F; Sat, 29 Aug 2009 06:42:04 +0800 (CST) Received: from localhost (tarsier.geekcn.org [211.166.10.233]) by tarsier.geekcn.org (Postfix) with ESMTP id CA5D155CDD42; Sat, 29 Aug 2009 06:42:03 +0800 (CST) X-Virus-Scanned: amavisd-new at geekcn.org Received: from tarsier.geekcn.org ([211.166.10.233]) by localhost (mail.geekcn.org [211.166.10.233]) (amavisd-new, port 10024) with ESMTP id LFCUFyeCt5MT; Sat, 29 Aug 2009 06:41:10 +0800 (CST) Received: from charlie.delphij.net (adsl-76-237-33-62.dsl.pltn13.sbcglobal.net [76.237.33.62]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by tarsier.geekcn.org (Postfix) with ESMTPSA id 240CA55CDD5B; Sat, 29 Aug 2009 06:41:03 +0800 (CST) DomainKey-Signature: a=rsa-sha1; s=default; d=delphij.net; c=nofws; q=dns; h=message-id:date:from:reply-to:organization:user-agent: mime-version:to:cc:subject:references:in-reply-to: x-enigmail-version:openpgp:content-type:content-transfer-encoding; b=SMMrYe22muSocA4ysIIqlPQSs0T52tii3lRyUCe3+Xg5iTyxgCaEtBaFSP55Sn6iy D13/3OeW2uGeMREh5dXUw== Message-ID: <4A985CEF.4030309@delphij.net> Date: Fri, 28 Aug 2009 15:40:47 -0700 From: Xin LI Organization: The FreeBSD Project User-Agent: Thunderbird 2.0.0.22 (X11/20090803) MIME-Version: 1.0 To: Matthew Hambley References: <4A96CE78.8050305@aether.demon.co.uk> In-Reply-To: <4A96CE78.8050305@aether.demon.co.uk> X-Enigmail-Version: 0.96.0 OpenPGP: id=18EDEBA0; url=http://www.delphij.net/delphij.asc Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: ports@FreeBSD.ORG, delphij@FreeBSD.ORG Subject: Re: FreeBSD Port: openldap-server-2.4.17 X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: d@delphij.net List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Aug 2009 22:42:05 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, Matthew Hambley wrote: > I've been banging my head on the wall which is OpenLDAP and Kerberos for > a week now. As far as I can tell I need to create the environment > variable KRB5_KTNAME to specify the keytab I want to use. If I do this > and start slapd manually things work. > > Unfortunately there seems no way of specifying this so the slapd startup > script does so. I've tried hacking the script myself but to no avail. I > see one person out there once had the same problem but got no replies > explaining how this was best resolved. > > Given that this hadn't been fixed in the years of the ports lifetime I > imagine there must be a good reason for its continued absence. I just > can't work out what it is. I think this is a bug and has to be fixed. Could you please try the attached patch? It will add a new knob to rc.conf ("slapd_krb5_ktname") which will emulate the export. Cheers, - -- Xin LI http://www.delphij.net/ FreeBSD - The Power to Serve! -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.12 (FreeBSD) iEYEARECAAYFAkqYXO4ACgkQi+vbBBjt66B6bwCgpY/2IvykApKITgL/pmsJL8XQ MeQAoIcoySbNG9nrpYdJAIgHa2PS/r+9 =k4WO -----END PGP SIGNATURE-----