From owner-freebsd-ports@FreeBSD.ORG Sat Nov 22 17:57:28 2014 Return-Path: Delivered-To: ports@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 10388BA3; Sat, 22 Nov 2014 17:57:28 +0000 (UTC) Received: from smtp-out-01.shaw.ca (smtp-out-01.shaw.ca [64.59.136.137]) by mx1.freebsd.org (Postfix) with ESMTP id C7C53E81; Sat, 22 Nov 2014 17:57:27 +0000 (UTC) X-Cloudmark-SP-Filtered: true X-Cloudmark-SP-Result: v=1.1 cv=vC3pk2euBDNChG//pvWvL3ooOWecHx7HOhb0No4pI08= c=1 sm=1 a=BLceEmwcHowA:10 a=ICAaq7hcmGcA:10 a=kj9zAlcOel0A:10 a=IbtKDeXwb2+SRU442/pi3A==:17 a=ZaDg5-L3AAAA:8 a=BWvPGDcYAAAA:8 a=6I5d2MoRAAAA:8 a=gXoT1oZtwWsQuOO4GkoA:9 a=CjuIK1q_8ugA:10 a=HpAAvcLHHh0Zw7uRqdWCyQ==:117 Received: from unknown (HELO spqr.komquats.com) ([96.50.7.119]) by smtp-out-01.shaw.ca with ESMTP; 22 Nov 2014 10:57:18 -0700 Received: from slippy.cwsent.com (slippy8 [10.2.2.6]) by spqr.komquats.com (Postfix) with ESMTP id 76B7B9BEA; Sat, 22 Nov 2014 09:57:18 -0800 (PST) Received: from slippy.cwsent.com (localhost [127.0.0.1]) by slippy.cwsent.com (8.14.9/8.14.9) with ESMTP id sAMHvI9J003901; Sat, 22 Nov 2014 09:57:18 -0800 (PST) (envelope-from Cy.Schubert@komquats.com) Received: from slippy (cy@localhost) by slippy.cwsent.com (8.14.9/8.14.8/Submit) with ESMTP id sAMHvHFo003898; Sat, 22 Nov 2014 09:57:17 -0800 (PST) (envelope-from Cy.Schubert@komquats.com) Message-Id: <201411221757.sAMHvHFo003898@slippy.cwsent.com> X-Authentication-Warning: slippy.cwsent.com: cy owned process doing -bs X-Mailer: exmh version 2.8.0 04/21/2012 with nmh-1.6 Reply-to: Cy Schubert From: Cy Schubert X-os: FreeBSD X-Sender: cy@cwsent.com X-URL: http://www.komquats.com/ To: R Skinner Subject: Re: FreeBSD Port: krb5-1.13 In-Reply-To: Message from R Skinner of "Sun, 23 Nov 2014 01:21:59 +1000." <5470AA17.4040008@herveybayaustralia.com.au> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Sat, 22 Nov 2014 09:57:17 -0800 Cc: ports@FreeBSD.org, cy@FreeBSD.org X-BeenThere: freebsd-ports@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Porting software to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 22 Nov 2014 17:57:28 -0000 In message <5470AA17.4040008@herveybayaustralia.com.au>, R Skinner writes: > An interesting point came up in one of my ventures - I was trying to set > up a kerberos system with ldap for authentication/authorisation, > therefore using ldap as the backend for the kerberos. > > I ran make install clean from ports and set ldap options in the config, > then tried to get it all running using some docs and tutorials I googled > up. All of them mention a kerberos.schema file needed in openldap/schema/. > > So I started hunting for it; couldn't find it. Looked online at various > sites (including mit) and it is mentioned, but all information pointed > to it being available under share/doc/ in some form. But to my chagrin, > it was not to be found at all. Now I'm really got my challenge on, so I > look deeper. > > I checked the plist file and it is not mentioned, though one would think > it would be if ldap is set in the config. I looked all through near > every file, ran find commands; all no good. I then run make again and > attempt to see if it is actually shipped with the tar ball. Finally, > looking deep in the extracted and built directory (not staged, mind) I > finally find my kerberos.schema, as well as a kerberos.ldif, in > krb5-1.13/src/plugins/kdb/ldap/libkdb_ldap/. > > Now that I've narrated my little adventure, I'm left kinda curious as to > why, if ldap is selected as an option in config, _and_ if this schema is > so critical to the operation of ldap as a backend to kerberos (maybe > even heimdal too), then why are these files simply discarded rather than > installed, leaving someone like myself frustrated and mystified? :) I > imagine many would simply give up or try and jerry rig something by this > point, but for it to be right there... > > Any chance for a fix on this? I think I may have even tried to do this > several years ago as well and gave up because of this same issue > (although I think I may have been looking at heimdal at the time, so > same issue could still be there too); had to put it in the too hard > basket at the time due to temporal deficiencies... > > Cheers > File a PR and I'll look at it. Thanks. -- Cheers, Cy Schubert FreeBSD UNIX: Web: http://www.FreeBSD.org The need of the many outweighs the greed of the few.