freebsd-ports/security/krb5-appl/files
Cy Schubert 60b5569db4 Fix problem with V4 keys. We should get KRB5_KDB_NO_MATCHING_KEY, not
ENOENT.  Obtained from /cvs/krbdev/krb5/src/kdc/kdc_preauth.c,v rev 5.31
in MIT KRB5 tree (fix etype info; wrong termination condition used in
get_etype_info).

Obtained from:	Sam Hartman <hartmans@mit.edu>
2002-06-26 04:49:07 +00:00
..
patch-ac
patch-ad
patch-ae
patch-af
patch-ai Update 1.2.2 -> 1.2.3 2002-01-16 03:17:24 +00:00
patch-aj
patch-appl::bsd::klogind.M In order to make the MIT KRB5 port compatible with FreeBSD, the port 2002-01-08 15:05:08 +00:00
patch-appl::bsd::Makefile.in In order to make the MIT KRB5 port compatible with FreeBSD, the port 2002-01-08 15:05:08 +00:00
patch-appl::telnet::telnetd::Makefile.in In order to make the MIT KRB5 port compatible with FreeBSD, the port 2002-01-08 15:05:08 +00:00
patch-appl::telnet::telnetd::telnetd.8 In order to make the MIT KRB5 port compatible with FreeBSD, the port 2002-01-08 15:05:08 +00:00
patch-appl::telnet::telnetd::utility.c Update 1.2.2 -> 1.2.3 2002-01-16 03:17:24 +00:00
patch-as = Modify `ksu' so that it uses the login cap database. Michael Allman 2001-09-07 19:53:09 +00:00
patch-at
patch-av
patch-ax
patch-ay Update 1.2.2 -> 1.2.3 2002-01-16 03:17:24 +00:00
patch-ba
patch-bb
patch-kdc::kdc_preauth.c Fix problem with V4 keys. We should get KRB5_KDB_NO_MATCHING_KEY, not 2002-06-26 04:49:07 +00:00
README.FreeBSD In order to make the MIT KRB5 port compatible with FreeBSD, the port 2002-01-08 15:05:08 +00:00

The MIT KRB5 port provides its own login program at
${PREFIX}/sbin/login.krb5.  However, login.krb5 does not make use of
the FreeBSD login.conf and login.access files that provide a means of
setting up and controlling sessions under FreeBSD.  To overcome this,
the MIT KRB5 port uses the FreeBSD /usr/bin/login program to provide
interactive login password authentication instead of the login.krb5
program provided by MIT KRB5.  The FreeBSD /usr/bin/login program does
not have support for Kerberos V password authentication,
e.g. authentication at the console.  The pam_krb5 port must be used to
provide Kerberos V password authentication.

For more information about pam_krb5, please see pam(8) and pam_krb5(8).

If you wish to use login.krb5 that is provided by the MIT KRB5 port,
the arguments "-L ${PREFIX}/sbin/login.krb5" must be
specified as arguments to klogind and KRB5 telnetd, e.g.

klogin	stream	tcp	nowait	root	${PREFIX}/sbin/klogind	klogind -k -c -L ${PREFIX}/sbin/login.krb5
eklogin	stream	tcp	nowait	root	${PREFIX}/sbin/klogind	klogind -k -c -e -L ${PREFIX}/sbin/login.krb5
telnet	stream	tcp	nowait	root	${PREFIX}/sbin/telnetd	telnetd -a none -L ${PREFIX}/sbin/login.krb5

Additionally, if you wish to use the MIT KRB5 provided login.krb5 instead
of the FreeBSD provided /usr/bin/login for local tty logins,
"lo=${PREFIX}/sbin/login.krb5" must be specified in /etc/gettytab, e.g.,

default:\
	:cb:ce:ck:lc:fd#1000:im=\r\n%s/%m (%h) (%t)\r\n\r\n:sp#1200:\
	:if=/etc/issue:\
	:lo=${PREFIX}/sbin/login.krb5:

It is recommended that the FreeBSD /usr/bin/login be used with the
pam_krb5 port instead of the MIT KRB5 provided login.krb5.