From owner-freebsd-current@FreeBSD.ORG  Mon May  5 10:43:22 2003
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E418637B401
	for <freebsd-current@freebsd.org>;
	Mon,  5 May 2003 10:43:22 -0700 (PDT)
Received: from ion.gank.org (ion.gank.org [198.78.66.164])
	by mx1.FreeBSD.org (Postfix) with ESMTP id E5AA943F93
	for <freebsd-current@freebsd.org>;
	Mon,  5 May 2003 10:43:21 -0700 (PDT)
	(envelope-from craig@xfoil.gank.org)
Received: from localhost (ion.gank.org [198.78.66.164])
	by ion.gank.org (GankMail) with ESMTP
	id 3365B2CFCA; Mon,  5 May 2003 12:43:21 -0500 (CDT)
Received: from ion.gank.org ([198.78.66.164])
 by localhost (ion.gank.org [198.78.66.164]) (amavisd-new, port 10024)
 with LMTP id 95529-03-2; Mon,  5 May 2003 12:43:20 -0500 (CDT)
Received: from owen1492.uf.corelab.com (pix.corelab.com [12.45.169.2])
	by ion.gank.org (GankMail) with ESMTP
	id 47F0C2BBB7; Mon,  5 May 2003 12:43:20 -0500 (CDT)
From: Craig Boston <craig@xfoil.gank.org>
To: Kris Kennaway <kris@obsecurity.org>
In-Reply-To: <20030505152136.GB31920@rot13.obsecurity.org>
References: <20030505052615.R2996@znfgre.qbhto.arg>
	 <20030505142945.15738.qmail@laurel.tmseck.homedns.org>
	 <20030505152136.GB31920@rot13.obsecurity.org>
Content-Type: text/plain
Organization: 
Message-Id: <1052156596.38008.4.camel@owen1492.uf.corelab.com>
Mime-Version: 1.0
X-Mailer: Ximian Evolution 1.2.4 
Date: 05 May 2003 12:43:17 -0500
Content-Transfer-Encoding: 7bit
cc: freebsd-current@freebsd.org
cc: Thomas Seck <tmseck-lists@netcologne.de>
Subject: Re: HEADS UP! Kerberos5/Heimdal now default!
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 05 May 2003 17:43:23 -0000

On Mon, 2003-05-05 at 10:21, Kris Kennaway wrote:
> With recent changes, Kerberos is no longer separate or de-selectable
> from sysinstall, unless you also get rid of e.g. openssh.  That's part
> of what we're discussing.

Is there a set procedure for removing the Kerberos 5 bits after
rebuilding with NO_KERBEROS set?

I use MIT Kerberos installed via the port and have always had to make
absolutely sure to NOT install the base system with Heimdal KRB5, lest
other ports pick up the wrong header files.  This was possible before
with a custom install.

I know that a find -mtime +1 should theoretically work, but that seems
to be hackish at best...

Craig