From owner-freebsd-hackers Thu Aug 30 6:23:21 2001 Delivered-To: freebsd-hackers@freebsd.org Received: from gw.nectar.com (gw.nectar.com [208.42.49.153]) by hub.freebsd.org (Postfix) with ESMTP id 3B4AA37B414 for ; Thu, 30 Aug 2001 06:23:17 -0700 (PDT) (envelope-from nectar@nectar.com) Received: from madman.nectar.com (madman.nectar.com [10.0.1.111]) by gw.nectar.com (Postfix) with ESMTP id 90C57D4E; Thu, 30 Aug 2001 08:23:16 -0500 (CDT) Received: (from nectar@localhost) by madman.nectar.com (8.11.3/8.11.3) id f7UDNA822111; Thu, 30 Aug 2001 08:23:10 -0500 (CDT) (envelope-from nectar) Date: Thu, 30 Aug 2001 08:23:10 -0500 From: "Jacques A. Vidrine" To: Jim Bryant Cc: David Terrell , Gordon Tetlow , hackers@freebsd.org Subject: Re: OpenSSH + Kerberos 5 + PAM Message-ID: <20010830082310.A22080@madman.nectar.com> References: <20010829175637.H20868@pianosa.catch22.org> <3B8DC2FE.4030002@yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3B8DC2FE.4030002@yahoo.com>; from kc5vdj@yahoo.com on Wed, Aug 29, 2001 at 11:37:18PM -0500 X-Url: http://www.nectar.com/ Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Wed, Aug 29, 2001 at 11:37:18PM -0500, Jim Bryant wrote: > I'm not that current on krb5, but I do have to ask if the CERT issues > have been resolved? My info on this is a little old, but I recall > CERT advisories last year on serious vulnerabilities in krb5 at the > time, it would be nice to know if they have been fixed. Do you think you could be a little more specific? AFAIK, there are no publicly known, unfixed vulnerabilities in either MIT or Heimdal Kerberos. Cheers, -- Jacques Vidrine / n@nectar.com / jvidrine@verio.net / nectar@FreeBSD.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message