From owner-svn-src-all@FreeBSD.ORG Sun Dec 23 03:24:09 2012 Return-Path: Delivered-To: svn-src-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id CDB43CE3; Sun, 23 Dec 2012 03:24:09 +0000 (UTC) (envelope-from bjkfbsd@gmail.com) Received: from mail-ia0-f169.google.com (mail-ia0-f169.google.com [209.85.210.169]) by mx1.freebsd.org (Postfix) with ESMTP id 624018FC13; Sun, 23 Dec 2012 03:24:09 +0000 (UTC) Received: by mail-ia0-f169.google.com with SMTP id r4so5119142iaj.14 for ; Sat, 22 Dec 2012 19:24:03 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=UFZV67bLqhTLJi6jOvONpZ+EHCI5diVUzKL6YH20T2k=; b=IJv0bSGHNhblTS6dzCpTV/Pu3kcBY2lSYrbpup43QTtVkvxHJNy1PsTPX015xc5V2t cvVqP0cfE2ykfBMT2KVjHzbHfxL/Kdx+w+oocjZJmYoEbzor0FwwhUaGODDmJza1wy5U uzFPG7IjkJT8nn+rg3Mb4EDqe+sFH5xpjsUKMpnja/8nzsMiW06PmlnTblVrDfY/Q+IG HdZKPfov1QTeJpwA8/TTNzFa9u79Y+W3LW4rHVQXk497VPgPD1vOiT8PP3s0nP9kBMi0 WK5aZ687/bQaxLXoQXvcN+xHMWNEudEIE4OWCAfX7NeOMIyB83g3DSqBDCZfmqUfchM+ 9n9A== MIME-Version: 1.0 Received: by 10.50.187.225 with SMTP id fv1mr12416883igc.96.1356233042870; Sat, 22 Dec 2012 19:24:02 -0800 (PST) Received: by 10.42.56.83 with HTTP; Sat, 22 Dec 2012 19:24:02 -0800 (PST) In-Reply-To: <201212222334.qBMNYT1Y077396@svn.freebsd.org> References: <201212222334.qBMNYT1Y077396@svn.freebsd.org> Date: Sat, 22 Dec 2012 22:24:02 -0500 Message-ID: Subject: Re: svn commit: r244605 - head/usr.sbin/gssd From: Benjamin Kaduk To: Rick Macklem Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.14 Cc: svn-src-head@freebsd.org, svn-src-all@freebsd.org, src-committers@freebsd.org X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 23 Dec 2012 03:24:09 -0000 Hi Rick, Thanks for all this -- it's good stuff to have. On Sat, Dec 22, 2012 at 6:34 PM, Rick Macklem wrote: > Author: rmacklem > Date: Sat Dec 22 23:34:28 2012 > New Revision: 244605 > URL: http://svnweb.freebsd.org/changeset/base/244605 > > Log: > Document the new gssd daemon options added by r244604. > This is a content change. > > MFC after: 2 weeks > > Modified: > head/usr.sbin/gssd/gssd.8 > > Modified: head/usr.sbin/gssd/gssd.8 > > ============================================================================== > --- head/usr.sbin/gssd/gssd.8 Sat Dec 22 23:21:17 2012 (r244604) > +++ head/usr.sbin/gssd/gssd.8 Sat Dec 22 23:34:28 2012 (r244605) > @@ -46,6 +49,29 @@ Run in debug mode. > In this mode, > .Nm > will not fork when it starts. > +.It Fl s Ar dir-list > +Look for an appropriate credential cache file in this list of directories. > +The list should be full pathnames from root, separated by ':' characters. > +Usually this list will simply be "/tmp". > +Without this option, the > +.Nm > +daemon assumes that the credential cache file is called /tmp/krb5cc_, > +where is the effective uid for the RPC caller. > +.It Fl c Ar file-substring > +Set a file-substring for the credential cache file names. > +Only files with this substring embedded in their names will be > +selected as candidates when the > +.Fl s > +has been specified. > This grammar seems a bit fishy ("when the -s has been specified"); "when -s has been specified" or "when a search directory has been specified with -s" would probably be better. > +If not specified, it defaults to "krb5cc_". > +.It Fl r Ar preferred-realm > +Set a preferred Kerberos realm for the search of the directory list for > "Directory list" sounds like there are multiple directories involved, perhaps "directory listing" is better? > +a credentials cache file. > +When set, files with TGT credentials for this realm will be selected over > +other credential files. > +This option is only meaningful when the > +.Fl s > +option has been specified. > There is something of a movement among the doc types to remove "redundant" words, making this "when -s has been specified", but others (some quite senior) do not approve of this "useless churn". Might not be worth changing now, but for new content, something to consider. Let me know if I should make the patch. -Ben Kaduk