From owner-freebsd-security@FreeBSD.ORG  Thu Jan 13 14:04:44 2005
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 47D1116A4CE; Thu, 13 Jan 2005 14:04:44 +0000 (GMT)
Received: from mx01.uunet.co.za (mx01.uunet.co.za [196.31.48.143])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 52E3643D48; Thu, 13 Jan 2005 14:04:43 +0000 (GMT)
	(envelope-from gareth@za.uu.net)
Received: from [196.30.72.11] (helo=pixproxy.so.cpt1.za.uu.net)
	by mx01.uunet.co.za with esmtp (Exim 4.34; FreeBSD)
	id 1Cp5aX-0001jn-3w; Thu, 13 Jan 2005 16:04:41 +0200
Received: from gabba.so.cpt1.za.uu.net (gabba.so.cpt1.za.uu.net
	[196.30.72.25])
	by pixproxy.so.cpt1.za.uu.net (Postfix) with ESMTP id 869D357AC;
	Thu, 13 Jan 2005 16:04:36 +0200 (SAST)
Date: Thu, 13 Jan 2005 16:04:36 +0200 (SAST)
From: Gareth Hopkins <gareth@za.uu.net>
X-X-Sender: gareth@gabba.so.cpt1.za.uu.net
To: "Jacques A. Vidrine" <nectar@FreeBSD.org>
In-Reply-To: <20050112155303.GA35406@hellblazer.celabo.org>
Message-ID: <20050113160249.C71794@gabba.so.cpt1.za.uu.net>
References: <20050110190814.J49931@gabba.so.cpt1.za.uu.net>
	<41E3E6C3.7070801@kernel32.de>
	<20050112103328.0c6288d3@mobile.pittgoth.com>
	<20050112155303.GA35406@hellblazer.celabo.org>
X-Cell: +27 82 929 6668
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-Virus-Scanner: Scanned By ClamAV
X-Spam-Score: -4.9 (----)
X-Scan-Signature: bbc9321660c8d71ee37aa53dc7e21ad0
cc: freebsd-security@FreeBSD.org
cc: Mark Murray <markm@FreeBSD.org>
Subject: Re: MIT Kerberos and OpenSSH
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jan 2005 14:04:44 -0000

On Wed, 12 Jan 2005, Jacques A. Vidrine wrote:

JAV>On Wed, Jan 12, 2005 at 10:33:28AM -0500, Tom Rhodes wrote:
JAV>> Have you asked Mark Murray about this?  I think he has worked
JAV>> with Kerberos in the base system.
JAV>
JAV>He's on the CC: list (^_^)
JAV>
JAV>
JAV>The short answer is:  There is no facility to link the *base system*
JAV>OpenSSH with MIT Kerberos.  Use the OpenSSH port if you want to do that.

Howdie,

	Would that be the openssh port (3.6.1) or the openssh-portable port (3.9.0.1)

	Looks like I may need to stick with 4.11 if I want to use the full functionality
of kerberos. 

---
Gareth Hopkins
Server Operations
UUNET South Africa