[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: using Heimdal Krb5 for DCE RPC Security

To: Jim Doyle <jrd@bu.edu>
Subject: Re: using Heimdal Krb5 for DCE RPC Security
From: joda@pdc.kth.se (Johan Danielsson)
Date: 25 Sep 1998 00:40:39 +0200
Cc: heimdal-discuss@sics.se
In-Reply-To: Jim Doyle's message of "Wed, 23 Sep 1998 19:44:43 -0400 (EDT)"
References: <Pine.SOL.3.96.980923192917.777A-100000@buitz>
Sender: owner-heimdal-discuss@sics.se

Jim Doyle <jrd@bu.edu> writes:

> - What is the status on the GSSAPI library implementation?

I don't know what the *status* is, but I guess it works with the
things we've tried it with (basically ftp).

> - Are the Heimdahl V5 libraries thread safe?

Not at this time. Depending on the level of thread-safeness you want,
it will be more or less difficult to add. We don't, for instance, use
any static data (except in a few places).

Is this something people would like to have, and if so to what extent?

> - Have Heimdahl V5 clients been interoperability tested against
>   a DCE Security Server. (that is, can Heimdahl decode TGTs 
>   issued by a DCE SEC server like the MIT v5 kit can ? )

We tried that ages ago, but it seems to work.

> However, Heimdahl cant presently understand how to traverse a
> credentials cache that has been constructed by DCE 1.1 - (Krb5Beta2)

I guess this is because DCE is using some old format.

/Johan

Follow-Ups:
- Re: using Heimdal Krb5 for DCE RPC Security
  - From: Leif Johansson <leifj@matematik.su.se>

References:
- using Heimdal Krb5 for DCE RPC Security
  - From: Jim Doyle <jrd@bu.edu>

Prev by Date: Heimdahl Kerberos V5 / DCE interoperability
Next by Date: Re: using Heimdal Krb5 for DCE RPC Security
Prev by thread: using Heimdal Krb5 for DCE RPC Security
Next by thread: Re: using Heimdal Krb5 for DCE RPC Security
Index(es):
- Date
- Thread